Potential Credential Impersonation Attack in IBM Tivoli SecureWay Policy Director and Other Products

Potential Credential Impersonation Attack in IBM Tivoli SecureWay Policy Director and Other Products

CVE-2004-2558 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Unspecified vulnerability in IBM Tivoli SecureWay Policy Director 3.8, Access Manager for e-business 3.9 to 5.1, Access Manager Identity Manager Solution 5.1, Configuration Manager 4.2, Configuration Manager for Automated Teller Machines 2.1.0, and IBM WebSphere Everyplace Server, Service Provider Offering for Multi-platforms 2.1.3 to 2.15 allow remote attackers to hijack sessions of authenticated users via unknown attack vectors involving certain cookies, aka "Potential Credential Impersonation Attack."

Learn more about our Cis Benchmark Audit For Ibm I.