VULHUB ™

It has been reported that Compaq Web Agent sessions will persist until expiration after an authenticated user closes their browser. This condition occurs if the authenticated user does not manually log out from the Compaq Web Agents interface. This issue may make it possible for the unexpired session to be reused under some circumstances by a malicious user. Successful exploitation may allow the attacker to gain unauthorized access to the Compaq Web Agents interface or gain access to a different user role for the interface and perform actions with elevated privileges. This issue was reported in Compaq Web Agent Service 6.0.0.0. It is not known which other versions are affected.

It has been reported that Compaq Web Agent sessions will persist until expiration after an authenticated user closes their browser. This condition occurs if the authenticated user does not manually log out from the Compaq Web Agents interface. This issue may make it possible for the unexpired session to be reused under some circumstances by a malicious user. Successful exploitation may allow the attacker to gain unauthorized access to the Compaq Web Agents interface or gain access to a different user role for the interface and perform actions with elevated privileges. This issue was reported in Compaq Web Agent Service 6.0.0.0. It is not known which other versions are affected.