Federation SMPORTALURL vulnerability

Document ID : KB000012269
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

Federation SMPORTALURL can be manipulated and poses an OpenRedirect Vulnerability

Question:

How can the Federation SMPORTALURL be secured from OpenRedirect Vulnerability as today it can be manipulated and user can be redirected to a malicious target .

Answer:

- The SMPORTALURL Vulnerability was addressed within 12.52 SP2 Release where a "Use Secure URL" check box was introduced to encrypt only the SMPORTALURL query parameter.

- The encrypted SMPORTALURL prevents a malicious user from modifying the value and redirecting authenticated users to a malicious website.

- Please refer to the below link for additional details on the "Use Secure URL"

https://docops.ca.com/ca-single-sign-on/12-52-sp2/en/using/administrative-ui-help/federation-partnerships-reference/sso-and-slo-dialog-saml-2-0-idp

- The same Feauture was backported to the 12.52 SP1 CR06 Release as indicated in the below link 

https://docops.ca.com/ca-single-sign-on/12-52-sp2/en/release-notes/cumulative-releases/defects-fixed-in-12-52-sp1-cr06

Additional Information:

In summary ,this feature is available in the below Releases :

- 12.52 SP1 CR06 and higher

- 12.52 SP2 and higher