Secunia Security Advisory – David Vieira-Kurz has reported a vulnerability in VHCS, which can be exploited by malicious people to conduct session fixation attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/57947/sa26142.txt
Source: https://packetstormsecurity.com/files/57947/Secunia-Security-Advisory-26142.html