CVE-2001-1532 Information

Description

WebX stores authentication information in the HTTP_REFERER variable which is included in URL links within bulletin board messages posted by users which could allow remote attackers to hijack user sessions.

Reference

http://www.iss.net/security_center/static/7458.php http://www.securityfocus.com/archive/1/223799