4.3
CVE-2011-3424
- EPSS 1.28%
- Veröffentlicht 19.09.2011 12:02:57
- Zuletzt bearbeitet 16.06.2026 23:33:16
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tibco ≫ Managed File Transfer Command Center Version <= 7.1.0
Tibco ≫ Managed File Transfer Command Center Version6.7
Tibco ≫ Managed File Transfer Command Center Version7.0
Tibco ≫ Managed File Transfer Command Center Version7.0.1
Tibco ≫ Managed File Transfer Internet Server Version <= 7.1.0
Tibco ≫ Managed File Transfer Internet Server Version6.7
Tibco ≫ Managed File Transfer Internet Server Version7.0
Tibco ≫ Managed File Transfer Internet Server Version7.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.28% | 0.663 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/45976
http://securitytracker.com/id?1026051
http://www.securityfocus.com/bid/49619
http://www.tibco.com/multimedia/mft-slingshot_advisory_20110913_tcm8-14340.txt
http://www.tibco.com/services/support/advisories/mft-slingshot-advisory_20110913.jsp
http://www.osvdb.org/75397
https://exchange.xforce.ibmcloud.com/vulnerabilities/69805