What is CVE-2005-4734?

CVE-2005-4734 is a vulnerability in N/a. Published 2006-03-19.

Is CVE-2005-4734 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2005-4734

Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web (aka SecurID Web Agent) 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method.

EPSS: 0.725 (98.8th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

26424 (vdb-entry, x_refsource_BID)
knowledge.rsasecurity.com/dlcpages/rsa_securid/securid_dlc_aaweb.asp (x_refsource_MISC)
20151 (x_refsource_OSVDB, vdb-entry)
www.metasploit.com/projects/Framework/exploits.html (x_refsource_MISC)
17281 (x_refsource_SECUNIA, third-party-advisory)

Frequently asked questions

What is CVE-2005-4734?: CVE-2005-4734 is a vulnerability in N/a. Published 2006-03-19.
Is CVE-2005-4734 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.