Jul 2, 2019 9:01 am EDT
Categorized: Low Severity
Share this post:
IBM Tivoli Netcool Impact did not implement proper Session Management. The attacker can fix the users session and lure the victim to login with the Arbitrary session he created, further results into Session hijacking.
CVE(s): Not Applicable
Affected product(s) and affected version(s):
|
Affected IBM Tivoli Netcool Impact |
Affected Versions |
| IBM Tivoli Netcool Impact 7.1.0 | 7.1.0.0 ~ 7.1.0.15 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10957961
X-Force Database:
from IBM Product Security Incident Response Team https://ift.tt/2JmT4JQ
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.