Atlassian's Crowd tool still has a security flaw, researchers say

07/2/2013 | · Register (U.K.), The

Atlassian says it has patched a vulnerability in its Crowd single-sign-on and identity-management tool for enterprises, but the company disputes a report by researchers at Command Five that another Crowd vulnerability remains unpatched. "We've been unable to substantiate the existence of the second alleged vulnerability, designated CVE-2013-3926. The author of the report has not contacted Atlassian, making it difficult to validate the claim," Atlassian stated.

View Full Article in: · Register (U.K.), The

Published in Brief: