CVE-2013-0942: XSS
First published: Wed May 22 2013(Updated: )
Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| EMC RSA Authentication Agent SDK for C | =7.1 | |
| Microsoft Internet Information Services | ||
| Apache Http Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2013-0942?
CVE-2013-0942 is categorized as a moderate severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2013-0942?
To fix CVE-2013-0942, upgrade to RSA Authentication Agent version 7.1.1 or later.
What platforms are affected by CVE-2013-0942?
CVE-2013-0942 affects EMC RSA Authentication Agent 7.1 for both Web for Internet Information Services and Apache.
Can CVE-2013-0942 be exploited remotely?
Yes, CVE-2013-0942 can be exploited remotely, allowing attackers to inject arbitrary web scripts or HTML.
What type of vulnerability is CVE-2013-0942?
CVE-2013-0942 is classified as a cross-site scripting (XSS) vulnerability.
- agent/type
- agent/severity
- agent/references
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/weakness
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/emc
- canonical/emc rsa authentication agent sdk for c
- version/emc rsa authentication agent sdk for c/7.1
- vendor/microsoft
- canonical/microsoft internet information services
- vendor/apache
- canonical/apache http server