CVE-2020-27198 ESP Session Hijack due to common credentials
Kemp Reference PD-15788
Where multiple users share credential properties, a vulnerability in the handling of User Sessions in LoadMaster Edge Security Pack (ESP) could enable one authenticated user to inadvertently take over another authenticated user's session.
Impact
Where two users share credential properties including a specific matching portion of the username as well as the same password, simultaneous logins can result in one user accessing the other user's session. This could result in data being inadvertently accessed by a user.
Affected Products
The following products are affected by this vulnerability:
LoadMasters utilising ESP running LMOS versions 7.2.51, 7.2.50, 7.2.48.2 using Client-Side Forms Based Authentication
Not affected :
LoadMasters not utilising Edge Security Pack (ESP)
LoadMasters utilizing ESP but not using Client-Side Forms Based Authentication
LoadMasters running LMOS version 7.2.48.1 or lower
LoadMasters running LMOS version LMOS 7.2.48.3+(LTS) LMOS 7.2.52+(GA)
Recommendation:
If you are utilising ESP and using Client-Side Forms Based Authentication while running LMOS versions 7.2.51, 7.2.50 or 7.2.48.2, please upgrade the LoadMaster Firmware to 7.2.53 (General Availability Release) or 7.2.48.4 (Long Term Stable Release).
Comments
Hi @infra
We are going to work on this to make it a bit clearer. However the correct way to mitigate against this is to use one of our current firmware versions of 7.2.53 or 7.2.48.4.
Mark Rowlands
Mitigation? Fix?