Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5809

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2008-5809
Last Modified 26 Feb 2009 02:05:03
Published 02 Jan 2009 01:11:09
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5809

Summary

futomi CGI Cafe Access Analyzer CGI Standard 4.0.1 and earlier and Access Analyzer CGI Professional 4.11.3 and earlier use a predictable session id, which makes it easier for remote attackers to hijack sessions, and obtain sensitive information about analysis results, via a modified id.

Vulnerable Systems

Application

  • Futomi Access Analyzer Cgi Nil

  • Futomi Access Analyzer Cgi 1.0

  • Futomi Access Analyzer Cgi 1.1

  • Futomi Access Analyzer Cgi 1.2

  • Futomi Access Analyzer Cgi 1.3

  • Futomi Access Analyzer Cgi 1.4

  • Futomi Access Analyzer Cgi 1.5

  • Futomi Access Analyzer Cgi 1.6

  • Futomi Access Analyzer Cgi 1.7

  • Futomi Access Analyzer Cgi 2.0

  • Futomi Access Analyzer Cgi 2.1

  • Futomi Access Analyzer Cgi 2.2

  • Futomi Access Analyzer Cgi 2.3

  • Futomi Access Analyzer Cgi 2.4

  • Futomi Access Analyzer Cgi 3.0

  • Futomi Access Analyzer Cgi 3.1

  • Futomi Access Analyzer Cgi 3.2

  • Futomi Access Analyzer Cgi 3.3

  • Futomi Access Analyzer Cgi 3.4

  • Futomi Access Analyzer Cgi 3.5

  • Futomi Access Analyzer Cgi 3.6

  • Futomi Access Analyzer Cgi 3.7

  • Futomi Access Analyzer Cgi 3.8

  • Futomi Access Analyzer Cgi 3.8.1

  • Futomi Access Analyzer Cgi 4.0

  • Futomi Access Analyzer Cgi 4.0.0

  • Futomi Access Analyzer Cgi 4.0.1

  • Futomi Access Analyzer Cgi 4.1

  • Futomi Access Analyzer Cgi 4.10

  • Futomi Access Analyzer Cgi 4.10.1

  • Futomi Access Analyzer Cgi 4.10.2

  • Futomi Access Analyzer Cgi 4.10.3

  • Futomi Access Analyzer Cgi 4.10.4

  • Futomi Access Analyzer Cgi 4.10.5

  • Futomi Access Analyzer Cgi 4.11.0

  • Futomi Access Analyzer Cgi 4.11.1

  • Futomi Access Analyzer Cgi 4.11.2

  • Futomi Access Analyzer Cgi 4.11.3

  • Futomi Access Analyzer Cgi 4.2

  • Futomi Access Analyzer Cgi 4.3

  • Futomi Access Analyzer Cgi 4.4

  • Futomi Access Analyzer Cgi 4.5

  • Futomi Access Analyzer Cgi 4.6

  • Futomi Access Analyzer Cgi 4.7

  • Futomi Access Analyzer Cgi 4.8

  • Futomi Access Analyzer Cgi 4.9


References

BID - 32794

CONFIRM - http://www.futomi.com/library/info/2008/20081212.html

JVNDB - JVNDB-2008-000083

JVN - JVN#07468800


Last Updated: 27 May 2016 10:48:56