CVE-2008-3057
The CVE-2008-3057 entry concerns Octeth Oempro 3.5.5.1 (and possibly versions before 4). The underlying issue is that the PHPSESSID cookie is not marked Secure in HTTPS sessions, which allows an attacker to capture the cookie by intercepting its transmission over HTTP. The available documents con...