CVE-2010-3893
The CVE-2010-3893 issue affects IBM OmniFind Enterprise Edition 8.x/9.x, where the session ID (SID) is not bound to an IP address, enabling session impersonation after cookie theft (e.g., via CVE-2010-3890). This allows an attacker to perform administrative actions from any machine reaching the a...