Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-1984

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2014-1984
Last Modified 21 Apr 2014 03:16:56
Published 19 Apr 2014 03:55:07
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-1984

Summary

Session fixation vulnerability in the management screen in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to hijack web sessions via unspecified vectors.

Vulnerable Systems

Application

  • Cybozu Remote Service Manager 2.3.0

  • Cybozu Remote Service Manager 3.1.0


References

CONFIRM - http://cs.cybozu.co.jp/information/20130317notice02.php

JVNDB - JVNDB-2014-000040

JVN - JVN#00058727


Last Updated: 27 May 2016 11:05:02