CVE-2012-2667

NONECVSS 0.0

0.0

Session fixation vulnerability in lib/user/sfBasicSecurityUser.class.php in SensioLabs Symfony before 1.4.18 allows remote attackers to hijack web sessions via vectors related to the regenerate method and unspecified "database backed session classes."

🔗 References (14)

secalert@redhathttp://secunia.com/advisories/49312
secalert@redhathttp://symfony.com/blog/security-release-symfony-1-4-18-released
secalert@redhathttp://trac.symfony-project.org/browser/tags/RELEASE_1_4_18/CHANGELOG
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/06/04/1
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/06/05/2
secalert@redhathttp://www.securityfocus.com/bid/53776
secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/76027
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/49312
af854a3a-2127-422b-91ae-364da2661108http://symfony.com/blog/security-release-symfony-1-4-18-released
af854a3a-2127-422b-91ae-364da2661108http://trac.symfony-project.org/browser/tags/RELEASE_1_4_18/CHANGELOG
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/06/04/1
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/06/05/2
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/53776
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/76027

Is Your Infrastructure Affected by CVE-2012-2667?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-2667

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-2667?