Vulnerability in Emc Rsa_authentication_agent

CVE-2013-3271

EMC RSA Authentication Agent for PAM 7.0 before 7.0.2.1 enforces the maximum number of login attempts within the PAM-enabled application codebase, instead of within the Agent codebase, which makes it easier for remote attackers to discover…

EPSS: 0.003 (51.2th percentile) — read the EPSS interpretation.

Affected products

Emc Rsa_authentication_agent — versions 7.0.0, 7.0.1, 7.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-255

References

20130820 ESA-2013-047: RSA Authentication Agent for PAM Unlimited Login Attempts Vulnerability (mailing-list, x_refsource_BUGTRAQ)