Rsa Securid vulnerabilities

CVE-2011-4141 [CRITICAL] CVE-2011-4141: Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Software Token file.

CVE-2002-0507 [LOW] CWE-287 CVE-2002-0507: An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to byp An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually accepted by OWA.

CVE-2001-1462 [HIGH] CVE-2001-1462: WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allo WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.

CVE-2001-1461 [HIGH] CVE-2001-1461: Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Wind Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /.. or (2) \.. sequences.