CVE-2013-0931

Published: Mar 5, 2013Modified: Apr 29, 2026

5.4

Vector

AV:A/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 5.5 / Impact: 6.4

Source: NVD

Description

EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration.

Affected (2)

Products: Rsa: Authentication Agent For Windows

1 product

Authentication Agent For Windows

Configuration A

2 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Rsa Authentication Agent For Windows	Version 7.1.1
Rsa Authentication Agent For Windows	Version 7.1

Running on/with	Platform Versions
Microsoft Windows 2003 Server	All versions
Microsoft Windows Xp	All versions

Related CWEs

References (2)

http://archives.neohapsis.com/archives/bugtraq/2013-03/0001.html

Source: security_alert@emc.com

http://archives.neohapsis.com/archives/bugtraq/2013-03/0001.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.