Title: Sapphire/Web Authentication Vulnerability
Severity: MODERATE
Description:
Bluestone Saphire/Web is a framework for iCommerce platforms.
In Bluestone Sapphire web servers,a vulnerability exists making it possible to hijack the sessions of other clients. The authentication is based on client-side cookies which store an ID number. If an attacker has a username and password and connects with such, the other clients sessions may be compromised. The ID numbers stored in the cookie increment by one, making it trivial to guess the other id numbers (and write them to new cookie files) above and below the attacker in the line of connected users. The ID numbers remain constant for as long as the session exists, making it even more trivial to exploit.
Affected Products:
- Bluestone Sapphire/Web 5.0.0
References:
- Bluestone Software: Bluestone Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
