Lucene search
Veracode Vulnerability DatabaseVERACODE:24606HistoryApr 10, 2020 - 12:59 a.m.
Session Fixation
2020-04-1000:59:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.004
Percentile
74.9%
spacewalk is vulnerable to session fixation. A session fixation flaw was found in the way RHN Satellite Server handled session cookies. An RHN Satellite Server user able to pre-set the session cookie in a victim’s browser to a valid value could use this flaw to hijack the victim’s session after the next log in.
References
secunia.com/advisories/43487
www.redhat.com/support/errata/RHSA-2011-0300.html
www.securityfocus.com/bid/46528
www.securitytracker.com/id?1025116
www.vupen.com/english/advisories/2011/0491
access.redhat.com/errata/RHSA-2011:0300
access.redhat.com/security/cve/CVE-2011-0717
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=672159
exchange.xforce.ibmcloud.com/vulnerabilities/65658
Related
nvd
nvd
CVE-2011-0717
2011-02-25 19:00:01
prion
prion
Session fixation
2011-02-25 19:00:00
cvelist
cvelist
CVE-2011-0717
2011-02-25 18:00:00
cve
cve
CVE-2011-0717
2011-02-25 19:00:01
nessus
nessus
RHEL 5 : Red Hat Network Satellite Server (RHSA-2011:0300)
2013-01-24 00:00:00
redhat
redhat
(RHSA-2011:0300) Moderate: Red Hat Network Satellite Server security update
2011-02-23 00:00:00