CVE-2009-3656 Information

Description

Cross-site request forgery (CSRF) vulnerability in Shared Sign-On 5.x and 6.x a module for Drupal allows remote attackers to hijack the authentication of arbitrary users via unknown vectors.

Reference

http://drupal.org/node/592488 http://www.securityfocus.com/bid/36563 https://exchange.xforce.ibmcloud.com/vulnerabilities/53559