CVE-2010-0554
04.02.2010, 20:15
The HTTP Authentication implementation in Geo++ GNCASTER 1.4.0.7 and earlier uses the same nonce for all authentication, which allows remote attackers to hijack web sessions or bypass authentication via a replay attack.Enginsight
Vendor | Product | Version |
---|---|---|
geopp | geo\+\+_gncaster | 𝑥 ≤ 1.4.0.7 |
geopp | geo\+\+_gncaster | 1.4.0.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References