CVE-2008-1134 Information

Description

OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 supports authentication with a cookie that lacks a shared secret which allows remote attackers to login as an arbitrary user via a modified cookie.

Reference

http://secunia.com/advisories/28410 http://www.securityfocus.com/archive/1/486009/100/0/threaded http://www.securityfocus.com/bid/27210 https://exchange.xforce.ibmcloud.com/vulnerabilities/39575