Business Objects Crystal Enterprise 9 and 10 generates predictable session identifiers, which allows remote malicious users to hijack sessions of other users via WCSID cookie values.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
businessobjects crystal enterprise 9 |
||
businessobjects crystal enterprise 10 |