12 Sep 2012
Exposure of sensitive information
Vulnerabilities where documents or credentials are leaked or can be revealed either locally or from remote.
This covers vulnerabilities where a user session or a communication channel can be taken over by other users or remote attackers.
EMC has acknowledged a weakness in RSA BSAFE, which can be exploited by malicious people to disclose potentially sensitive information and hijack a user's session.
A design error exists within the implementation of SSL 3.0 and TLS 1.0 protocols.
For more information:
The weakness is reported in RSA BSAFE Micro Edition Suite versions prior to 4.0.
Update to RSA BSAFE Micro Edition Suite version 4.0.