CVE-2011-3424
6.9 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.2%
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified vectors.
Affected configurations
References
secunia.com/advisories/45976
securitytracker.com/id?1026051
www.osvdb.org/75397
www.securityfocus.com/bid/49619
www.tibco.com/multimedia/mft-slingshot_advisory_20110913_tcm8-14340.txt
www.tibco.com/services/support/advisories/mft-slingshot-advisory_20110913.jsp
exchange.xforce.ibmcloud.com/vulnerabilities/69805
Related
6.9 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.2%