← voltar
CVE-2015-6845

CVE-2015-6845

EPSS 3.5%
EMC SourceOne Email Supervisor before 7.2 does not properly employ random values for session IDs, which makes it easier for remote attackers to obtain access by guessing an ID.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstormsecurity.com/files/133922/EMC-SourceOne-Email-Supervisor-XSS-Session-Hijacking.htmlhttp://seclists.org/bugtraq/2015/Oct/58http://www.securitytracker.com/id/1033787