CVE-2011-2401
First published: Fri Jul 29 2011(Updated: )
Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack web sessions via unspecified vectors.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP SiteScope | =10.13 | |
| HP SiteScope | =9.54 | |
| HP SiteScope | =11.01 | |
| HP SiteScope | =10.00 | |
| HP SiteScope | =9.0 | |
| HP SiteScope | =11.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-2401?
CVE-2011-2401 is considered a high severity vulnerability due to its potential for session hijacking.
How do I fix CVE-2011-2401?
To fix CVE-2011-2401, upgrade HP SiteScope to a version that is not affected by this vulnerability.
What versions of HP SiteScope are affected by CVE-2011-2401?
CVE-2011-2401 affects HP SiteScope versions 9.x, 10.x, and 11.x, including specific versions like 9.0, 9.54, 10.00, 10.13, 11.01, and 11.1.
What type of vulnerability is CVE-2011-2401?
CVE-2011-2401 is a session fixation vulnerability that allows remote attackers to hijack web sessions.
Can I still use HP SiteScope with CVE-2011-2401?
While you can continue to use HP SiteScope, it is highly recommended to address CVE-2011-2401 to avoid the risk of session hijacking.
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/hp
- canonical/hp sitescope
- version/hp sitescope/10.13
- version/hp sitescope/9.54
- version/hp sitescope/11.01
- version/hp sitescope/10.00
- version/hp sitescope/9.0
- version/hp sitescope/11.1