The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 prior to 3.4.2.0 iFix 8 and 3.4.3 prior to 3.4.3.0 iFix 1 allows remote malicious users to obtain access by leveraging an unattended workstation to conduct a post-logoff session-reuse attack involving a modified URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm sterling secure proxy 3.4.2.0 |
||
ibm sterling secure proxy 3.4.3.0 |