RSA Authentication Client 3.5 < 3.5.6 Local Authentication Bypass
High Nessus Plugin ID 62438
SynopsisThe remote Windows host has an application installed that is affected by an authentication bypass vulnerability.
DescriptionRSA Authentication Client, an authentication client from RSA Security, is installed on the remote Windows host. The installed version of RSA Authentication Client 3.5 is earlier than 3.5.6 and is, therefore, potentially affected by an authentication bypass vulnerability. Under certain circumstances, a user who only has access to a desktop or server could be able to connect with only Windows credentials.
SolutionUpgrade to RSA Authentication Client 3.5.6 or later.