Security Advisory
CVE-2001-0962
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain privileges of WebSphere users via brute force guessing.