CVE-2010-2337 Information

Description

Open redirect vulnerability in RSA Federated Identity Manager 4.0 before 4.0.25 and 4.1 before 4.1.26 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors.

Reference

http://archives.neohapsis.com/archives/bugtraq/2010-07/0187.html http://osvdb.org/66504 http://secunia.com/advisories/40704 http://www.securityfocus.com/bid/41850 http://www.securitytracker.com/id?1024239 http://www.vupen.com/english/advisories/2010/1880 https://exchange.xforce.ibmcloud.com/vulnerabilities/60564 https://knowledge.rsasecurity.com/scolcms/set.aspx?id=8692