CVE-2011-1718 in Broadcom and CA Technologies Products
Published on April 27, 2011
The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly handle multi-line headers, which allows remote authenticated users to conduct impersonation attacks and gain privileges via crafted data.
Products Associated with CVE-2011-1718
stack.watch emails you whenever new vulnerabilities are published in Broadcom Siteminder or CA Technologies Siteminder. Just hit a watch button to start following.
Exploit Probability
EPSS
0.84%
Percentile
74.34%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.