2 matches found
CVE-2010-3323
Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKDSESSIONKEY parameter...
CVE-2010-3323
Splunk 4.0.0–4.1.4 is vulnerable to remote session hijacking; the root cause is exposure of the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter. Impact is disclosure of the session key and potential unauthorized access. No patch/version remediation details are provide...