Описание
IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions, which allows remote attackers to access sessions by leveraging an unattended workstation.
IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions, which allows remote attackers to access sessions by leveraging an unattended workstation.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-6110
- https://exchange.xforce.ibmcloud.com/vulnerabilities/96179
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV66496
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV66624
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV66635
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV66637
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV66642
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV66645
- http://www-01.ibm.com/support/docview.wss?uid=swg21689779
Связанные уязвимости
nvd
около 11 лет назад
IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions, which allows remote attackers to access sessions by leveraging an unattended workstation.