RSS   Vulnerabilities for 'Storcenter pro'   RSS

2009-07-08
 
CVE-2009-2367

CWE-310
 

 
cgi-bin/makecgi-pro in Iomega StorCenter Pro generates predictable session IDs, which allows remote attackers to hijack active sessions and gain privileges via brute force guessing attacks on the session_id parameter.

 

 >>> Vendor: Iomega 8 Products
Zip 100 mb drive
Jazip
Network attached storage
NAS
Storcenter pro
Home media network hard drive
Iconnect
Storcenter


Copyright 2024, cxsecurity.com

 

Back to Top