CVE-2015-0523

Published: Mar 12, 2015Modified: May 6, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

EMC RSA Certificate Manager (RCM) before 6.9 build 558 and RSA Registration Manager (RRM) before 6.9 build 558 allow remote attackers to cause an Administration Server denial of service via an invalid MIME e-mail message with a multipart/* Content-Type header.

Affected (2)

Products: Emc: Rsa Certificate Manager, Rsa Registration Manager

2 products

Rsa Certificate Manager

Rsa Registration Manager

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Emc Rsa Certificate Manager	Up to 6.8
Emc Rsa Registration Manager	Up to 6.8

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (6)

http://packetstormsecurity.com/files/130769/RSA-Digital-Certificate-Solution-XSS-Denial-Of-Service.html

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

http://seclists.org/bugtraq/2015/Mar/47

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1031912

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/130769/RSA-Digital-Certificate-Solution-XSS-Denial-Of-Service.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://seclists.org/bugtraq/2015/Mar/47

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1031912

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.