SecuritySpace - CVE-2015-1915

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2015-1915

Description: The Endpoint Manager for Remote Control component in IBM Tivoli Endpoint Manager for Lifecycle Management 9.0.1 before IF6 and 9.1.0 before IF6 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

Test IDs: 1.3.6.1.4.1.25623.1.0.106435

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-1915
AIX APAR: IV72069
http://www-01.ibm.com/support/docview.wss?uid=swg1IV72069
BugTraq ID: 74193
http://www.securityfocus.com/bid/74193

CVE ID:	CVE-2015-1915
Description:	The Endpoint Manager for Remote Control component in IBM Tivoli Endpoint Manager for Lifecycle Management 9.0.1 before IF6 and 9.1.0 before IF6 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Test IDs:	1.3.6.1.4.1.25623.1.0.106435
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1915 AIX APAR: IV72069 http://www-01.ibm.com/support/docview.wss?uid=swg1IV72069 BugTraq ID: 74193 http://www.securityfocus.com/bid/74193