CVE-2006-4099

2006-11-29T17:28:00
ID CVE-2006-4099
Type cve
Reporter cve@mitre.org
Modified 2017-07-20T01:32:00

Description

Business Objects Crystal Enterprise 9 and 10 generates predictable session identifiers, which allows remote attackers to hijack sessions of other users via WCSID cookie values.