The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of SafeNet Authentication Manager

computer vulnerability alert 22516

SafeNet Authentication Manager: privilege escalation via an ActiveX component of the client package

Synthesis of the vulnerability

An attacker can misuse an ActiveX component of the SafeNet Authentication Manager, in order to escalate his privileges.
Impacted products: SafeNet Authentication Manager.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: document.
Creation date: 20/04/2017.
Identifiers: VIGILANCE-VUL-22516.

Description of the vulnerability

The client part of the SafeNet Authentication Manager includes an ActiveX component.

However, this component provides access via Javascript to some functions which should not be reachable from the Web.

An attacker can therefore misuse an ActiveX component of the SafeNet Authentication Manager, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2015-7561 CVE-2015-7562 CVE-2015-7563

SafeNet Authentication Service Agents: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of SafeNet Authentication Service Agents.
Impacted products: SafeNet Authentication Manager.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user shell.
Number of vulnerabilities in this bulletin: 10.
Creation date: 01/04/2016.
Identifiers: CVE-2015-7561, CVE-2015-7562, CVE-2015-7563, CVE-2015-7564, CVE-2015-7565, CVE-2015-7566, CVE-2015-7567, CVE-2015-7596, CVE-2015-7597, CVE-2015-7598, SB116, VIGILANCE-VUL-19286.

Description of the vulnerability

Several vulnerabilities were announced in SafeNet Authentication Service Agents.

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7596]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7597]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7598]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7561]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7562]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7563]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7564]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7565]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7566]

An attacker can bypass security features of ACLs, in order to escalate his privileges. [severity:2/4; CVE-2015-7567]
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about SafeNet Authentication Manager: