The RDPData.dll file exposes theΒ /irmdata/api/common endpoint that handles session IDs, Β among other features. By using a UNION SQL operator, an attacker can leak the sessions table, obtain the currently valid sessions and impersonate a currently logged-in user.
CPE | Name | Operator | Version |
---|---|---|---|
internet_reservation_module_next_generation | eq | 5.3.2.15 |