Unrated severityNVD Advisory· Published Mar 21, 2013· Updated Apr 29, 2026

CVE-2013-2279

Description

CA SiteMinder Federation (FSS) 12.5, 12.0, and r6; Federation (Standalone) 12.1 and 12.0; Agent for SharePoint 2010; and SiteMinder for Secure Proxy Server 6.0, 12.0, and 12.5 does not properly verify XML signatures for SAML statements, which allows remote attackers to spoof other users and gain privileges.

Affected products

Siteminder Federation/1202 versions
cpe:2.3:a:siteminder_federation:12.0:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:siteminder_federation:12.0:*:*:*:*:*:*:*:*
- cpe:2.3:a:siteminder_federation:12.0:-:standalone:*:*:*:*:*:*
Siteminder Federation/121
cpe:2.3:a:siteminder_federation:12.1:-:standalone:*:*:*:*:*:*
Siteminder Federation/125
cpe:2.3:a:siteminder_federation:12.5:*:*:*:*:*:*:*:*
Siteminder Federation/R6.0
cpe:2.3:a:siteminder_federation:r6.0:*:*:*:*:*:*:*:*
Siteminder For Secure Proxy Server/120
cpe:2.3:a:siteminder_for_secure_proxy_server:12.0:*:*:*:*:*:*:*:*
Siteminder For Secure Proxy Server/125
cpe:2.3:a:siteminder_for_secure_proxy_server:12.5:*:*:*:*:*:*:*:*
Siteminder For Secure Proxy Server/60
cpe:2.3:a:siteminder_for_secure_proxy_server:6.0:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/52610nvdVendor Advisory
archives.neohapsis.com/archives/bugtraq/2013-03/0118.htmlnvd
www.securityfocus.com/bid/58609nvd
support.ca.com/irj/portal/anonymous/phpsupcontentnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000