12 Sep 2012
This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
Exposure of sensitive information
Vulnerabilities where documents or credentials are leaked or can be revealed either locally or from remote.
This covers vulnerabilities where a user session or a communication channel can be taken over by other users or remote attackers.
EMC has acknowledged a weakness and a vulnerability in RSA BSAFE, which can be exploited by malicious people to disclose sensitive information, hijack a user's session, and potentially compromise an application using the library.
The weakness and the vulnerability are reported in RSA BSAFE SSL-C versions prior to 2.8.6.
Update to RSA BSAFE SSL-C version 2.8.6.