ID de Prueba:	1.3.6.1.4.1.25623.1.0.100386
Categoría:	Web application abuses
Título:	RT Session Fixation Vulnerability
Resumen:	RT is prone to a session-fixation vulnerability.
Descripción:	Summary: RT is prone to a session-fixation vulnerability. Vulnerability Impact: Attackers can exploit this issue to hijack a user's session and gain unauthorized access to the affected application. Affected Software/OS: The issue affects RT 3.0.0 through 3.8.5. Solution: Updates are available. Please see the references for more information. CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3585 BugTraq ID: 37162 http://www.securityfocus.com/bid/37162 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00761.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00794.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00832.html http://lists.bestpractical.com/pipermail/rt-announce/2009-November/000177.html http://lists.bestpractical.com/pipermail/rt-announce/2009-November/000176.html http://secunia.com/advisories/37546 http://secunia.com/advisories/37728 XForce ISS Database: rt-unspecified-session-hijacking(54472) https://exchange.xforce.ibmcloud.com/vulnerabilities/54472
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.