Session Fixation Vulnerability in HP SiteScope Web Monitoring Software

CVE-2011-2401

Summary

A session fixation vulnerability exists in HP SiteScope versions 9.x, 10.x, and 11.x, allowing remote attackers to hijack web sessions through unspecified vectors. This vulnerability can enable malicious actors to impersonate legitimate users, potentially leading to unauthorized access and data breaches. Proper configuration and session management practices are essential for protecting against such attacks.

References