A highly critical flaw was found in RSA SecurID Software Token. The vulnerability allows attacker to compromise user’s system. The vulnerability is due to loading libraries in insecure manner. An attacker may eg. entice users to open Software Token files located at remote WebDAV or SMB share. A successful attack allows to execute malicious code.
The flaw was found in versions prior to 4.1.1.
Users should upgrade to version 4.1.1.

Source: Secunia
15.12.2011