Oval Definition:
oval:org.opensuse.security:def:20083663
Revision Date
:
2012-11-01
Version
:
1
Title
:
CVE-2008-3663
Description
:
Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2008-3663
Platform(s)
:
openSUSE 10.2
openSUSE 10.3
Product(s)
:
Definition Synopsis
Release Information
suse103 is installed
AND
squirrelmail less than 1.4.17-0.1
OR
Package Information
suse103 is installed
AND
squirrelmail less than 1.4.10a-45.2
BACK