Medium severity5.9NVD Advisory· Published Mar 3, 2017· Updated Jun 17, 2026
CVE-2017-5831
CVE-2017-5831
Description
Session fixation vulnerability in the forgot password mechanism in Revive Adserver before 4.0.1, when setting a new password, allows remote attackers to hijack web sessions via the session ID.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:revive-adserver:revive_adserver:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:revive-adserver:revive_adserver:*:*:*:*:*:*:*:*range: <=4.0.0
- (no CPE)range: <4.0.1
Patches
Vulnerability mechanics
References
3- www.revive-adserver.com/security/revive-sa-2017-001/nvdPatchVendor Advisory
- www.openwall.com/lists/oss-security/2017/02/02/3nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/95875nvd
News mentions
0No linked articles in our index yet.