ReviveAdserver Session Fixation Vulnerability - CVE-2017-5831 - Vulnerability Database

ReviveAdserver Session Fixation Vulnerability - CVE-2017-5831

Medium

Reference: CVE-2017-5831

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-5831

Title: ReviveAdserver Session Fixation Vulnerability

Overview:

Session fixation vulnerability in the forgot password mechanism in Revive Adserver before 4.0.1 when setting a new password allows remote attackers to hijack web sessions via the session ID.