What is the severity of CVE-2010-2795?

CVE-2010-2795 has a medium severity rating, making it a significant concern for applications using vulnerable versions of phpCAS.

How do I fix CVE-2010-2795?

To fix CVE-2010-2795, upgrade phpCAS to version 1.1.2 or later to mitigate session hijacking risks.

CVE-2010-2795 affects multiple versions of phpCAS, specifically versions prior to 1.1.2.

CVE-2010-2795 allows remote authenticated users to hijack sessions using crafted ticket values in a query string.

CVE-2010-2795 was first disclosed in September 2010.

CWE

5/8/2010

17/8/2017

First published: Thu Aug 05 2010(Updated: )

phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string containing a crafted ticket value.

Credit: secalert@redhat.com

What is the severity of CVE-2010-2795?
CVE-2010-2795 has a medium severity rating, making it a significant concern for applications using vulnerable versions of phpCAS.
How do I fix CVE-2010-2795?
To fix CVE-2010-2795, upgrade phpCAS to version 1.1.2 or later to mitigate session hijacking risks.
What systems are affected by CVE-2010-2795?
CVE-2010-2795 affects multiple versions of phpCAS, specifically versions prior to 1.1.2.
What kind of attack does CVE-2010-2795 allow?
CVE-2010-2795 allows remote authenticated users to hijack sessions using crafted ticket values in a query string.
When was CVE-2010-2795 first disclosed?
CVE-2010-2795 was first disclosed in September 2010.