Lucene search
PRIOn knowledge basePRION:CVE-2014-4692HistoryJul 02, 2014 - 10:35 a.m.
Design/Logic Flaw
2014-07-0210:35:00
PRIOn knowledge base
www.prio-n.com
3
pfSense before 2.1.4, when HTTP is used, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.
Related
cvelist
cvelist
CVE-2014-4692
2014-07-02 10:00:00
cve
cve
CVE-2014-4692
2014-07-02 10:35:26
nvd
nvd
CVE-2014-4692
2014-07-02 10:35:26
openvas
openvas
pfSense Multiple Vulnerabilities - 01 (Sep 2015)
2015-09-04 00:00:00
nessus
nessus
pfSense < 2.1.4 Multiple Vulnerabilities (SA-14_08 - SA-14_12)
2018-01-31 00:00:00