CVE-2009-1629

NONECVSS 0.0

0.0

ajaxterm.js in AjaxTerm 0.10 and earlier generates session IDs with predictable random numbers based on certain JavaScript functions, which makes it easier for remote attackers to (1) hijack a session or (2) cause a denial of service (session ID exhaustion) via a brute-force attack.

🔗 References (14)

cve@mitrehttp://lists.fedoraproject.org/pipermail/package-announce/2010-December/052655.html
cve@mitrehttp://secunia.com/advisories/42784
cve@mitrehttp://www.ocert.org/advisories/ocert-2009-004.html
cve@mitrehttp://www.openwall.com/lists/oss-security/2009/05/11/1
cve@mitrehttp://www.securityfocus.com/archive/1/503421/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/34903
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/50464
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052655.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/42784
af854a3a-2127-422b-91ae-364da2661108http://www.ocert.org/advisories/ocert-2009-004.html
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2009/05/11/1
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/503421/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/34903
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/50464

Is Your Infrastructure Affected by CVE-2009-1629?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1629

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1629?