1. Home
  2. CVE Database
  3. CVE-2013-0942
MEDIUM · 4.3

CVE-2013-0942

Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to...

Vulnerability Description

Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
EmcRsa Authentication Agent7.1
MicrosoftInternet Information ServerAll versions
ApacheHttp ServerAll versions

Related Weaknesses (CWE)

CWE-79

References

FAQ

What is CVE-2013-0942?

CVE-2013-0942 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to...

How severe is CVE-2013-0942?

CVE-2013-0942 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-0942?

Check the references section above for vendor advisories and patch information. Affected products include: Emc Rsa Authentication Agent, Microsoft Internet Information Server, Apache Http Server.