Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0635

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-0635
Last Modified 01 Apr 2014 10:16:06
Published 01 Apr 2014 02:28:18
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2014-0635

Summary

Session fixation vulnerability in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 allows remote attackers to hijack web sessions via unspecified vectors.

Vulnerable Systems

Application

  • Emc Vplex Geosynchrony 4.0

  • Emc Vplex Geosynchrony 5.0

  • Emc Vplex Geosynchrony 5.1

  • Emc Vplex Geosynchrony 5.2

  • Emc Vplex Geosynchrony 5.2.1


References

BUGTRAQ - 20140326 ESA-2014-016: EMC VPLEX Multiple Vulnerabilities


Last Updated: 27 May 2016 11:04:50