CVE-2009-2583

CVE-2009-2583

EPSS 1.4%

Multiple session fixation vulnerabilities in IBM Tivoli Identity Manager (ITIM) 5.0.0.6 allow remote attackers to hijack web sessions via unspecified vectors involving the (1) console and (2) self service interfaces.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/35931 http://www-01.ibm.com/support/docview.wss?uid=swg1IZ55659 http://www-01.ibm.com/support/docview.wss?uid=swg24023826 http://www.securityfocus.com/bid/35779 http://www.securitytracker.com/id?1022597 http://www.vupen.com/english/advisories/2009/1990