CVE-2014-6110 Information

Description

IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions which allows remote attackers to access sessions by leveraging an unattended workstation.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg1IV66496 http://www-01.ibm.com/support/docview.wss?uid=swg1IV66624 http://www-01.ibm.com/support/docview.wss?uid=swg1IV66635 http://www-01.ibm.com/support/docview.wss?uid=swg1IV66637 http://www-01.ibm.com/support/docview.wss?uid=swg1IV66642 http://www-01.ibm.com/support/docview.wss?uid=swg1IV66645 http://www-01.ibm.com/support/docview.wss?uid=swg21689779 https://exchange.xforce.ibmcloud.com/vulnerabilities/96179