The Silverlight cross-domain policy in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x prior to 5.2SP1 does not restrict access to the Archer application, which allows remote malicious users to bypass the Same Origin Policy via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc rsa archer smartsuite 4.3 |
||
emc rsa archer smartsuite 4.5 |
||
emc rsa archer egrc 5.2 |
||
emc rsa archer egrc 5.0 |
||
emc rsa archer egrc 5.1 |