Passlogix v-GO Self-Service Password Reset (SSPR) and OEM before 7.0A allows physically proximate attackers to execute arbitrary programs without authentication by triggering use of an invalid SSL certificate and using the Internet Explorer interface to navigate through the filesystem via a "Save As" dialog that is reachable from the "Certificate Export" wizard.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-02-07T20:19:00
Updated: 2024-08-07T03:51:17.236Z
Reserved: 2010-12-08T00:00:00
Link: CVE-2010-4506
Vulnrichment
No data.
NVD
Status : Modified
Published: 2011-02-07T21:00:01.887
Modified: 2017-08-17T01:33:14.180
Link: CVE-2010-4506
Redhat
No data.