This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
SupportHelpdesk
New Contributor
New Contributor
‎2016-08-31 07:20 AM

RSA Authentication Manager 8.1 - CVE-2016-2177

Jump to solution

Hi,

 

Is RSA Authentication Manager  8.1 vulnerable to CVE-2016-2177, I have found the below which states 8.2 is not vulnerable, does this also apply to 8.1

 

https://community.rsa.com/docs/DOC-58483 

 

Thanks.

Labels (1)
Reply
1 Solution

Accepted Solutions
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)
‎2016-09-01 01:56 PM

Jump to solution

The response from Engineering is as follows:

 

Neither CVE-2016-2177 nor CVE-2016-2178 refer to a feature which differs between Authentication Manager 8.1 and 8.2.  

For Authentication Manager 8.1 the answer is the same:  The flaws exist but are not exploitable.

 

Please let me know if you have further questions.

 

Regards,

Erica

View solution in original post

Reply
4 Replies
jeffshurtliff
Administrator Administrator
Administrator
‎2016-08-31 09:17 AM

Jump to solution

Hi,

 

I have moved this thread to the https://community.rsa.com/community/products/securid?sr=search&searchId=5658fb97-174f-422b-8db8-005d05a84612&searchIndex=0‌ page so that you can get an answer to your question.

 

Thanks,

Jeff

0 Likes
Reply
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)
‎2016-08-31 09:54 AM

Jump to solution

I am checking on this for you and should have an answer from Engineering shortly.  Stay tuned!

 

Regards,

Erica

Reply
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)
‎2016-09-01 01:56 PM

Jump to solution

The response from Engineering is as follows:

 

Neither CVE-2016-2177 nor CVE-2016-2178 refer to a feature which differs between Authentication Manager 8.1 and 8.2.  

For Authentication Manager 8.1 the answer is the same:  The flaws exist but are not exploitable.

 

Please let me know if you have further questions.

 

Regards,

Erica

Reply
SupportHelpdesk
New Contributor
New Contributor
In response to _EricaChalfin
‎2016-09-02 04:02 AM

Jump to solution

Thanks for your help.

 

Regards,

Ciaran

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.