HP Systems Insight Manager JSessionID Session Fixation Vulnerability

info
discussion
exploit
solution
references

HP Systems Insight Manager JSessionID Session Fixation Vulnerability

HP Systems Insight Manager is prone to a session-fixation vulnerability. This issue stems from a design error in the application.

An attacker can exploit this issue to gain administrative access on the affected computer. Successfully exploiting this issue will result in the complete compromise of affected computers.