I'm having trouble getting the CAPTCHA to work correctly. After some debugging it appears that the call to CAPTCHA_image.asp via the <img src="CAPTCHA/CAPTCHA_image.asp" tag in CAPTCHA_form_inc.asp is running in a separate session from the main application. The Session variable strSecurityCode is never stored in the same session as the other pages, so the CAPTCHA always fails validation.
The server is not load balanced and not a web farm and other Session variables are working correctly. Other .asp pages in the CAPTCHA sub-folder are being called under the parent session ID and are storing test Session variables correctly that can be retrieved by the parent page.
Any idea what might be causing this issue?