SAML vulnerability

Document ID : KB000073155
Last Modified Date : 13/03/2018
Show Technical Document Details
Question:
We would like to know if CA Single Sing On SAML infrastructure is affected by the following vulnerability: Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal:
https://www.kb.cert.org/vuls/id/475445
Answer:
Siteminder/Single Sign On is not affected by this vulnerability:
https://support.ca.com/us/product-content/status/announcement-documents/2018/ca---proactive-notification---smplc---advisory---asmplc-100601.html