CVE-2014-8525 in McAfee Network Data Loss Preventioninfo

Zusammenfassung (Englisch)

McAfee Network Data Loss Prevention (NDLP) before 9.3 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

Reservieren

29.10.2014

Veröffentlichung

29.10.2014

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
68088	McAfee Network Data Loss Prevention HTTP Cookie httponly Information Disclosure	200	Unbewiesen	Offizieller Fix	CVE-2014-8525

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

◂ ZurückÜbersichtWeiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!