SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   WebIntelligence Vendors:   Business Objects
WebIntelligence Predictable Session Cookies Let Remote Users Hijack Sessions
SecurityTracker Alert ID:  1005906
SecurityTracker URL:  http://securitytracker.com/id/1005906
CVE Reference:   CVE-2003-1249   (Links to External Site)
Updated:  Jun 14 2008
Original Entry Date:  Jan 9 2003
Impact:   User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2.7.1 and prior versions
Description:   A vulnerability was reported in WebIntelligence from Business Objects. A remote user can hijack sessions to gain access to a target user's session.

Ubizen reported that a remote user can guess the predictable session cookies that are used to authenticate valid users. After hijacking the session, the remote user can reportedly take any action on the system acting as the target user except for changing the target user's password.

No further information on the predictable nature of the cookies was provided.

Both the web interface and the Windows client application (used to access the server) are vulnerable.

It is reported that the BusinessObjects client-only product is not affected.

Impact:   A remote user can hijack a target user's session to gain access to the target user's account.
Solution:   It is reported that the vendor has released a hotfix for (Bug ID 1063161) and also plans to include the fix in Service Pack 7, to be released "in the early part of Q2."

Service Packs SP3, SP4, SP5, and SP6 are reportedly available at:

http://techsupport.businessobjects.com/app/SecBulletin_120402.asp

Vendor URL:  www.businessobjects.com/products/webi/ (Links to External Site)
Cause:   Authentication error
Underlying OS:  UNIX (AIX), UNIX (HP/UX), UNIX (Solaris - SunOS), Windows (NT), Windows (2000)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC