SUPPORT / SAMPLES & SAS NOTES
Problem Note 40681: Unauthenticated access to dashboard indicators is possible when you use the SAS® Information Delivery Portal to view a dashboard
 |  |  |  |  |
Unauthenticated access to dashboard indicators is possible when you use the SAS Information Delivery Portal to view a dashboard in SAS® BI Dashboard. This issue results from a browser-session hijacking vulnerability.
There is no workaround or solution for this problem.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | SAS BI Dashboard | Microsoft Windows 2000 Advanced Server | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 |
| Microsoft Windows 2000 Datacenter Server | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows 2000 Server | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows 2000 Professional | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows NT Workstation | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows Server 2003 Datacenter Edition | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows Server 2003 Enterprise Edition | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows Server 2003 Standard Edition | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Microsoft Windows XP Professional | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Windows Vista | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| Windows Vista for x64 | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| 64-bit Enabled AIX | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| 64-bit Enabled Solaris | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||
| HP-UX IPF | 3.1 | 3.1 | 9.1 TS1M3 SP4 | 9.1 TS1M3 SP4 | ||