SUPPORT / SAMPLES & SAS NOTES
 

Support

Problem Note 55537: A reflected cross-site scripting vulnerability has been identified in SAS® Logon Manager

DetailsHotfixAboutRate It

Severity: Medium

Description: A reflected cross-site scripting vulnerability has been identified on the Timeout page in SAS Logon Manager.

Potential Impact: A user might unknowingly execute malicious code.

Click the Hot Fix tab in this note to access the hot fix for this issue.



Operating System and Release Information

Product FamilyProductSystemProduct ReleaseSAS Release
ReportedFixed*ReportedFixed*
SAS SystemSAS Web Infrastructure PlatformSolaris for x649.4_M29.4_M69.4 TS1M29.4 TS1M6
Linux for x649.4_M29.4_M69.4 TS1M29.4 TS1M6
HP-UX IPF9.4_M29.4_M69.4 TS1M29.4 TS1M6
64-bit Enabled Solaris9.4_M29.4_M69.4 TS1M29.4 TS1M6
64-bit Enabled AIX9.4_M29.4_M69.4 TS1M29.4 TS1M6
Microsoft® Windows® for x649.4_M29.4_M69.4 TS1M29.4 TS1M6
* For software releases that are not yet generally available, the Fixed Release is the software release in which the problem is planned to be fixed.