Session Fixation Vulnerability in TIBCO Collaborative Information Manager and ActiveCatalog
CVE-2010-4499

Currently unrated

Key Information:

Vendor: Tibco
Status: Collaborative Information Manager; Activecatalog
Vendor: CVE Published:; 7 January 2011

Summary

A session fixation vulnerability is present in TIBCO's Collaborative Information Manager and ActiveCatalog products. This security flaw allows remote attackers to hijack user sessions, exploiting unspecified vectors. Users and system administrators are advised to apply the latest patch to safeguard against unauthorized access and protect sensitive information.

References

http://www.securityfocus.com/bid/45691

vdb-entryx_refsource_BID

http://secunia.com/advisories/42791

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2011/0037

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jan 7, 2011
Vulnerability Reserved
Dec 7, 2010