We suddenly have a big problem in our production environment.

We had a user that was logged in into the application under his own name.

After lunch (half hour of inactivity) the user refreshes his screen (ie7 - F5 button) and suddenly it looks like he is logged in as another user, we can see because the username is onto the screen.

Every time the user presses F5 now he see the screen of the other user, even dialog boxes popping up and so on.

You can imagine this is an awsome big risk even if the data is from another organisation.

We use 6.3.9 / 3.5.

Any ideas how this can happend or to put us on the right track to find the problem are welcome.

Regards,

Tom

Hi Ori, tnx for the quick response.

I guess sending the application isnt possible, it's quite a big application and it's depending on a infrastructure with SQL databases for datastorage and licensing.

The two example you gave, we didnt use them.

The problem is that i still wasn't able to reproduce it, but i saw it happening at a workstation here and it really scares me coz diffrent organisations can see there data if this happends.

Is there a possibility you give us some hints where to look at or how we can investigate it further?

Thanks in advance!

Tnx happyfirst, but we did'n't use them.