Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4203

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2007-4203
Last Modified 15 Nov 2008 12:00:00
Published 07 Aug 2007 09:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4203

Summary

Session fixation vulnerability in Mambo 4.6.2 CMS allows remote attackers to hijack web sessions by setting the Cookie parameter.

Vulnerable Systems

Application

  • Mambo Open Source 4.6.2


References

XF - mambo-cookie-session-hijacking(35744)

BUGTRAQ - 20070801 Mambo 4.6.2 CMS - Session fixation Issue in backend Administration interface

SREASON - 2970

OSVDB - 42514


Last Updated: 27 May 2016 10:45:48