Sphera Hosting Director Control Session Hijacking

2003-06-13T08:28:37
ID OSVDB:2150
Type osvdb
Reporter OSVDB
Modified 2003-06-13T08:28:37

Description

Vulnerability Description

Sphera HostingDirector uses a weak method of generating session IDs which may lead to an increased possibility of an attacker brute-force guessing a valid session ID. A local attacker could exploit this vulnerability by hijacking the user's session to gain unauthorized access to sensitive information.

Technical Description

A local attacker can obtain a user's session ID and gain access to sensitive information caused by a vulnerability in the VDS Control Panel. If a user fails to close a session using the control panel, the session information is then saved. A local attacker could exploit this vulnerability by hijacking the user's session to gain unauthorized access to sensitive information.

Solution Description

There is no known solution or work around available for this issue.

Short Description

Sphera HostingDirector uses a weak method of generating session IDs which may lead to an increased possibility of an attacker brute-force guessing a valid session ID. A local attacker could exploit this vulnerability by hijacking the user's session to gain unauthorized access to sensitive information.

References:

Related OSVDB ID: 6667 ISS X-Force ID: 12315 Generic Informational URL: http://www.sphera.com/prod_hostingdirector.php Generic Informational URL: http://www.securityfocus.com/archive/1/325072 Bugtraq ID: 7904