Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

Business Objects Crystal Reports Predictable Session Identifiers Session Hijacking Vulnerability

Crystal Reports is prone to a session-hijacking vulnerability.

An attacker can exploit this issue to gain access to the affected application.

Crystal Reports Enterprise versions 9 and 10 are vulnerable to this issue.