CVE-2010-2270 Information

Description

Accoria Web Server (aka Rock Web Server) 1.4.7 uses a predictable httpmod-sessionid cookie which makes it easier for remote attackers to hijack sessions via a modified cookie.

Reference

http://www.ioactive.com/pdfs/AccoriaWebServer.pdf http://www.kb.cert.org/vuls/id/245081