CVE-2008-6298

2009-02-2616:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.3%

JSON

Unspecified vulnerability in sISAPILocation before 1.0.2.2 allows remote attackers to bypass intended access restrictions for character encoding and the cookie secure flag via unknown vectors related to the “HTTP header rewrite function.”

References

jvn.jp/en/jp/JVN67060882/index.html

jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000076.html

rocketeer.dip.jp/sanaki/free/free100.htm

secunia.com/advisories/32581

www.securityfocus.com/bid/32247

www.vupen.com/english/advisories/2008/3105

exchange.xforce.ibmcloud.com/vulnerabilities/46516