Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
SupportHelpdesk
New Contributor
New Contributor

RSA Authentication Manager 8.1 - CVE-2016-2177

Jump to solution

Hi,

 

Is RSA Authentication Manager  8.1 vulnerable to CVE-2016-2177, I have found the below which states 8.2 is not vulnerable, does this also apply to 8.1

 

https://community.rsa.com/docs/DOC-58483 

 

Thanks.

Labels (1)
1 Solution

Accepted Solutions
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)

The response from Engineering is as follows:

 

Neither CVE-2016-2177 nor CVE-2016-2178 refer to a feature which differs between Authentication Manager 8.1 and 8.2.  

For Authentication Manager 8.1 the answer is the same:  The flaws exist but are not exploitable.

 

Please let me know if you have further questions.

 

Regards,

Erica

View solution in original post

4 Replies
jeffshurtliff
Administrator Administrator
Administrator

Hi,

 

I have moved this thread to the https://community.rsa.com/community/products/securid?sr=search&searchId=5658fb97-174f-422b-8db8-005d05a84612&searchIndex=0‌ page so that you can get an answer to your question.

 

Thanks,

Jeff

0 Likes
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)

I am checking on this for you and should have an answer from Engineering shortly.  Stay tuned!

 

Regards,

Erica

_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)

The response from Engineering is as follows:

 

Neither CVE-2016-2177 nor CVE-2016-2178 refer to a feature which differs between Authentication Manager 8.1 and 8.2.  

For Authentication Manager 8.1 the answer is the same:  The flaws exist but are not exploitable.

 

Please let me know if you have further questions.

 

Regards,

Erica

Thanks for your help.

 

Regards,

Ciaran

0 Likes