CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-2270

Accoria Web Server (aka Rock Web Server) 1.4.7 uses a predictable httpmod-sessionid cookie, which makes it easier for remote attackers to hijack sessions via a modified cookie.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
http://www.kb.cert.org/vuls/id/245081
http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
http://www.kb.cert.org/vuls/id/245081

Products affected by CVE-2010-2270

Accoria » Rock Web Server » Version: 1.4.7

cpe:2.3:a:accoria:rock_web_server:1.4.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2270

Products

Pricing

Contact Us