• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Aipo Session Fixation Vulnerability

Aipo is prone to a session-fixation vulnerability because of a design error in the application.

When an unsuspecting victim logs in, an attacker can hijack the session and gain unauthorized access to the affected application.

This issue affects Aipo and Aipo ASP 3.0.1.0 and prior versions; other versions may also be affected.