{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-01-05T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Session fixation vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to hijack web sessions via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "45691", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/45691"}, {"name": "42791", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/42791"}, {"name": "ADV-2011-0037", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0037"}, {"name": "1024942", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1024942"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt"}, {"name": "tibco-unspecified-session-hijacking(64523)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64523"}, {"name": "70374", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/70374"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-4499", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Session fixation vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to hijack web sessions via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "45691", "refsource": "BID", "url": "http://www.securityfocus.com/bid/45691"}, {"name": "42791", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/42791"}, {"name": "ADV-2011-0037", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0037"}, {"name": "1024942", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1024942"}, {"name": "http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp", "refsource": "CONFIRM", "url": "http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp"}, {"name": "http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt", "refsource": "CONFIRM", "url": "http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt"}, {"name": "tibco-unspecified-session-hijacking(64523)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64523"}, {"name": "70374", "refsource": "OSVDB", "url": "http://osvdb.org/70374"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T03:51:17.244Z"}, "title": "CVE Program Container", "references": [{"name": "45691", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/45691"}, {"name": "42791", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/42791"}, {"name": "ADV-2011-0037", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0037"}, {"name": "1024942", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1024942"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt"}, {"name": "tibco-unspecified-session-hijacking(64523)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64523"}, {"name": "70374", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/70374"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2010-4499", "datePublished": "2011-01-07T18:00:00.000Z", "dateReserved": "2010-12-07T00:00:00.000Z", "dateUpdated": "2024-08-07T03:51:17.244Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tibco:activecatalog:*:*:*:*:*:*:*:*", "matchCriteriaId": "B74F110D-E53A-4712-8C85-C7D192056BF4", "versionEndIncluding": "1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:tibco:collaborative_information_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "4BEC429E-5352-45F6-8BFF-7287A8D4738B", "versionEndIncluding": "8.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Session fixation vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to hijack web sessions via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad de fijaci\u00f3n de sesi\u00f3n en el servidor Collaborative Information Manager, como el usado den TIBCO Collaborative Informaci\u00f3n Manager anteriores a v8.1.0 y ActiveCatalog anteriores a v1.0.1 permite a atacantes remotos secuestrar sesiones web a trav\u00e9s de vectores sin expecificar. \r\n"}], "id": "CVE-2010-4499", "lastModified": "2026-04-29T01:13:23.040", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-01-07T19:00:18.657", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/70374"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/42791"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/45691"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1024942"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2011/0037"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64523"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/70374"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/42791"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/45691"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1024942"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2011/0037"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64523"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}