EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an open redirect vulnerability. A remote unprivileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the RSA Archer application without the victims realizing an attack occurred.
Advisories
Source ID Title
EUVD EUVD EUVD-2017-14112 EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an open redirect vulnerability. A remote unprivileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the RSA Archer application without the victims realizing an attack occurred.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published:

Updated: 2024-08-05T14:47:43.841Z

Reserved: 2016-12-29T00:00:00

Link: CVE-2017-5002

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2017-07-07T00:29:00.447

Modified: 2025-04-20T01:37:25.860

Link: CVE-2017-5002

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.