Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

Bugtraq ID:	21350
Class:	Design Error
CVE:	CVE-2006-4099
Remote:	Yes
Local:	No
Published:	Nov 29 2006 12:00AM
Updated:	Nov 30 2006 04:09AM
Credit:	LB Jennings, M Ruks, and HMG Grobbelaar of MWR Infosecurity are credited with the discovery of this vulnerability.
Vulnerable:	Business Objects Crystal Enterprise 10.0 Business Objects Crystal Enterprise 9.0
Not Vulnerable:	Business Objects BusinessObjects Enterprise XI 0 Business Objects Business Objects Enterprise XIr2

Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

Crystal Reports is prone to a session-hijacking vulnerability.

An attacker can exploit this issue to gain access to the affected application.

Crystal Reports Enterprise versions 9 and 10 are vulnerable to this issue.

Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

Attackers can exploit this issue via a web client.

Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

Solution:
The vendor released fixes to address this issue. Please see the references for more information.

Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

References:

• Crystal Reports Enterprise Updates (Business Objects)
  
• Vendor Homepage (Business Objects)
  
• NISCC Vulnerability Advisory 564575/NISCC/CRYSTALRPRTS (NISCC)