Index: session.php
===================================================================
--- session.php	(revision 13936)
+++ session.php	(working copy)
@@ -193,7 +193,7 @@
 		}
 
 		// perform security checks to ensure, that session is used by it's creator
-		if ($this->Application->ConfigValue('SessionBrowserSignatureCheck') && ($result['BrowserSignature'] != $this->_getBrowserSignature())) {
+		if ($this->Application->ConfigValue('SessionBrowserSignatureCheck') && ($result['BrowserSignature'] != $this->_getBrowserSignature()) && $this->Application->GetVar('flashsid') === false) {
 			return false;
 		}