CVE-2014-0999

Sendio < 7.2.3 - Session Identifier Exposure via Referrer HTTP Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-0999. PoCs published by Core Security.

AI-analyzed exploit summary The exploit demonstrates an information disclosure vulnerability in Sendio ESP, where session identifiers are exposed in URLs and sensitive data can be leaked due to improper session handling. The provided Python script automates the detection of response mixup issues by comparing content lengths.

Description

Sendio before 7.2.4 includes the session identifier in URLs in emails, which allows remote attackers to obtain sensitive information and hijack sessions by reading the jsessionid parameter in the Referrer HTTP header.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Core Security · textwebappsjsp

https://www.exploit-db.com/exploits/37114

View Code ZIP pw:eip

The exploit demonstrates an information disclosure vulnerability in Sendio ESP, where session identifiers are exposed in URLs and sensitive data can be leaked due to improper session handling. The provided Python script automates the detection of response mixup issues by comparing content lengths.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Sendio ESP 6 (14.1120.0)

Auth required

Prerequisites: Valid session identifier (jsessionid) · Access to the target Sendio ESP web interface

MITRE ATT&CK