SecuritySpace - CVE-2013-4725

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2013-4725

Description: DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions, does not set the secure flag for an unspecified cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-4725
http://www.digitalsec.net/stuff/explt+advs/CM3.AcoraCMS.v6.txt
http://osvdb.org/96664

CVE ID:	CVE-2013-4725
Description:	DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions, does not set the secure flag for an unspecified cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4725 http://www.digitalsec.net/stuff/explt+advs/CM3.AcoraCMS.v6.txt http://osvdb.org/96664