CVE-2015-4542 Information

Description

EMC RSA Archer GRC 5.x before 5.5.3 allows remote authenticated users to bypass intended access restrictions and read or modify Discussion Forum Fields messages via unspecified vectors.

Reference

http://packetstormsecurity.com/files/133682/RSA-Archer-GRC-5.5.3-XSS-Improper-Authorization-Information-Disclosure.html http://seclists.org/bugtraq/2015/Sep/105 http://www.securitytracker.com/id/1033649