The vulnerability is caused due to a boundary error when parsing the "UserID" value in the session cookie, which can be exploited to cause a stack-based buffer overflow.
CVE Link
Exploit Type - Old
Exploits/Remote
Exploit Platform
Product Name