VYPR
Unrated severityNVD Advisory· Published Sep 19, 2011· Updated Jun 16, 2026

CVE-2011-3424

CVE-2011-3424

Description

Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified vectors.

Affected products

12
  • cpe:2.3:a:tibco:managed_file_transfer_command_center:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:tibco:managed_file_transfer_command_center:*:*:*:*:*:*:*:*range: <=7.1.0
    • cpe:2.3:a:tibco:managed_file_transfer_command_center:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:tibco:managed_file_transfer_command_center:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:tibco:managed_file_transfer_command_center:7.0.1:*:*:*:*:*:*:*
    • (no CPE)range: <7.1.1
  • cpe:2.3:a:tibco:managed_file_transfer_internet_server:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:tibco:managed_file_transfer_internet_server:*:*:*:*:*:*:*:*range: <=7.1.0
    • cpe:2.3:a:tibco:managed_file_transfer_internet_server:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:tibco:managed_file_transfer_internet_server:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:tibco:managed_file_transfer_internet_server:7.0.1:*:*:*:*:*:*:*
    • (no CPE)range: <7.1.1
  • cpe:2.3:a:tibco:slingshot:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:tibco:slingshot:*:*:*:*:*:*:*:*range: <=1.8.0
    • (no CPE)range: <1.8.1

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.