This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
The remote host has an application installed that is affected by a
signature validation bypass vulnerability.
The version of IBM Tivoli Federated Identity Manager installed on the
remote Windows host is affected by a signature validation bypass
vulnerability due to improper validation of XML signatures related to
certain single sign-on protocols and token modules. A remote,
unauthenticated attacker can exploit this, via a specially crafted
message, to perform actions as another user.
See also :
Upgrade to Tivoli Federated Identity Manager 188.8.131.52 / 184.108.40.206 /
220.127.116.11 / 18.104.22.168 or later.
Risk factor :
Medium / CVSS Base Score : 5.8
CVSS Temporal Score : 4.3
Public Exploit Available : false