CVE Vulnerabilities

CVE-2015-0544

Published: Jul 05, 2015 | Modified: Dec 28, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

EMC Secure Remote Services Virtual Edition (ESRS VE) 3.x before 3.06 does not properly generate random values for session cookies, which makes it easier for remote attackers to hijack sessions by predicting a value.

Affected Software

Name Vendor Start Version End Version
Secure_remote_services Emc 3.02 (including) 3.02 (including)
Secure_remote_services Emc 3.03 (including) 3.03 (including)
Secure_remote_services Emc 3.04 (including) 3.04 (including)

References