Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-0248

Malware in sbrugna...

5.8CVSS6.4AI score0.01282EPSS
Exploits1References6
securityvulns
securityvulns
added 2011/05/21 12:0 a.m.70 views

CVE-2010-0217 - Zeacom Chat Server JSESSIONID weak SessionID Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Packetninjas L.L.C www.packetninjas.net -= Security Advisory =- Advisory: Zeacom Chat Server JSESSIONID weak SessionID Vulnerability Release Date: unknown Last Modified: 09/27/2010 Author: Daniel Clemens daniel.clemensatpacketninjas.net Application:...

5.8CVSS0.2AI score0.01282EPSS
Exploits1
NVD
NVD
added 2011/05/20 10:55 p.m.20 views

CVE-2010-0217

Zeacom Chat Server before 5.1 uses too short a random string for the JSESSIONID value, which makes it easier for remote attackers to hijack sessions or cause a denial of service Chat Server crash or Tomcat daemon crash via a brute-force attack...

5.8CVSS6.6AI score0.01282EPSS
Exploits1References5
Prion
Prion
added 2011/05/20 10:55 p.m.14 views

Design/Logic Flaw

Zeacom Chat Server before 5.1 uses too short a random string for the JSESSIONID value, which makes it easier for remote attackers to hijack sessions or cause a denial of service Chat Server crash or Tomcat daemon crash via a brute-force attack...

5.8CVSS7.2AI score0.01282EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2011/05/20 10:0 p.m.25 views

CVE-2010-0217

Zeacom Chat Server before 5.1 uses too short a random string for the JSESSIONID value, which makes it easier for remote attackers to hijack sessions or cause a denial of service Chat Server crash or Tomcat daemon crash via a brute-force attack...

6.6AI score0.01282EPSS
Exploits1References5
CVE
CVE
added 2011/05/20 10:0 p.m.51 views

CVE-2010-0217

Zeacom Chat Server (before 5.1) uses a short JSESSIONID, giving low entropy and enabling brute-force session hijacking or a potential DoS via server crash. The root cause is weak session management in the web-chat component, with a 10-character JSESSIONID described as providing only about 9 bits ...

5.8CVSS6.8AI score0.01282EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder