Search
START TYPING AND PRESS ENTER TO SEARCH

Blog

Session Fixation

This hacking methodology basically involves the taking over of the victim’s session with the web server after he’s logged in. This is made possible by exploiting limitations in the application’s Session ID (SID) management. While authenticating a user, the vulnerable application doesn’t assign a new SID, making it possible to use an existing SID for the attack. These kinds of attacks typically consist of three stages – obtaining a valid SID, tricking the victim into authenticating himself and using his SID to impersonate him. Read More  
Envelope
Facebook Linkedin Twitter Youtube Envelope

About the Author

Dina Shkolnik

Dina Shkolnik

See All Blogs >
Dina Shkolnik

Dina Shkolnik

See All Blogs >

About the Author

Never miss an update. Subscribe today!

By submitting my information to Checkmarx, I hereby consent to the terms and conditions found in the Checkmarx Privacy Policy and to
the processing of my personal data as described therein. By clicking submit below, you consent to allow Checkmarx
to store and process the personal information submitted above to provide you the content requested.

More Resources to Consider

What you should know: HTTP/2 CONTINUATION Flood Vulnerability 
April 10, 2024
New Technique to Trick Developers Detected in an Open Source Supply Chain Attack
April 10, 2024
Backdoor Discovered in xz: The Most Advanced Supply Chain Attack Known to Date
April 1, 2024
PyPi Is Under Attack: Project Creation and User Registration Suspended
March 28, 2024

Contact Us

Interested in learning more about our unified platform and services?
Get in touch with a member of our team.
Request a Demo
Learn More
Solutions
Industry
Solutions For
Services
Partners
COMPARE
Company
Resources
Community
Linkedin Twitter Youtube Facebook

Terms of Use | Checkmarx Privacy Policy | Checkmarx.com Cookie Policy

©2024 Checkmarx Ltd. All Rights Reserved. iISO/IEC 27001:2013 Certified

Skip to content