The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of CA SiteMinder

CA Single Sign-On: two vulnerabilities of Web Agent
An attacker can use several vulnerabilities of CA Single Sign-On...
CA20160323-01, CVE-2015-6853, CVE-2015-6854, VIGILANCE-VUL-19233
CA SiteMinder: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of CA SiteMinder, in order to execute JavaScript code in the context of the web site...
BID-63333, CA20131024-01, CVE-2013-5968, VIGILANCE-VUL-13648
CA SiteMinder: SAML signatures not checked
An attacker can spoof SAML messages, and send them to CA SiteMinder, in order to access to user's data...
BID-58609, CA20130319-01, CERTA-2013-AVI-196, CVE-2013-2279, VIGILANCE-VUL-12544
CA SiteMinder: Cross Site Scripting via login.fcc
An attacker can generate a Cross Site Scripting in the login.fcc page of CA SiteMinder, in order to execute JavaScript code in the context of the web site...
BID-50962, CA20111208-01, CERTA-2011-AVI-679, CVE-2011-4054, VIGILANCE-VUL-11202, VU#713012
CA Directory: denial of service via SNMP
An attacker can send a malicious SNMP packer to CA Directory, in order to stop it, or to create a denial of service on products depending on it...
BID-50699, CA20111116-01, CERTA-2011-AVI-660, CVE-2011-3849, VIGILANCE-VUL-11165
CA SiteMinder Web Agent: user access
An attacker can use a malformed query, in order to access to CA SiteMinder Web Agent with privileges of another user...
BID-47521, CA20110420-01, CA20110420-02, CERTA-2011-AVI-247, CVE-2011-1718, VIGILANCE-VUL-10587
CA SiteMinder: Cross Site Scripting via WebWorks Help
An attacker can use the WebWorks Help in order to generate a Cross Site Scripting in CA SiteMinder...
CA20100304-01, CERTA-2009-AVI-548, CERTA-2010-AVI-107, CVE-2009-3731, VIGILANCE-VUL-9499
CA SiteMinder: bypassing
An attacker can bypass the Cross Site Scripting protection of CA SiteMinder...
BID-36086, BID-36088, CVE-2009-2704, CVE-2009-2705, VIGILANCE-VUL-8945
Apache, ASP.NET, SiteMinder, Tomcat: bypassing VBAAC
The syntax of configuration files of some web servers can mislead the administrator...
VIGILANCE-VUL-7858
CA SiteMinder Agent: Cross Site Scripting
An attacker can create a Cross Site Scripting attack in CA SiteMinder Agent...
BID-26375, CVE-2007-5923, VIGILANCE-VUL-7324
Our database contains other pages. You can request a free trial to read them.