Home Unlabelled IBM Security Bulletin: Session fixation defect in IBM Security AppScan Enterprise (CVE-2016-9981)

IBM Security Bulletin: Session fixation defect in IBM Security AppScan Enterprise (CVE-2016-9981)

By
Tuesday, August 01, 2017
Read
Add Comment

IBM AppScan Enterprise Edition could allow an attacker to hijack a valid user’s session using social engineering.

CVE(s): CVE-2016-9981

Affected product(s) and affected version(s):

Affected AppScan Enterprise EditionsAffected Versions
IBM Security AppScan Enterprise9.0.0 – 9.0.0.1
IBM Security AppScan Enterprise9.0.1 – 9.0.1.1
IBM Security AppScan Enterprise9.0.2 – 9.0.2.1
IBM Security AppScan Enterprise9.0.3 – 9.0.3.5

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2veCdEk
X-Force Database: http://ift.tt/2uUXjVt

The post IBM Security Bulletin: Session fixation defect in IBM Security AppScan Enterprise (CVE-2016-9981) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2vezZoi
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us