CVE-2012-6571

Name of the Vulnerable Software and Affected Versions Huawei BIMS and web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, and S7800 switches (affected versions not specified)

Description The issue concerns the HTTP module in the affected systems, which generates predictable Session ID values. This predictability makes it easier for remote attackers to hijack sessions using a brute-force attack.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.