2 matches found
Security Bulletin: Missing Secure Attribute in Encrypted Session (SSL) Cookie in ClearQuest Web (CVE-2014-3103)
Summary IBM Rational ClearQuest Web is vulnerable to Missing Secure Attribute in Encrypted Session SSL Cookie. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires login with your IBM ID...
CVE-2014-3103
The CVE-2014-3103 entry applies to IBM Rational ClearQuest Web. Affected: ClearQuest Web sessions using SSL where the session cookie lacks the Secure attribute, enabling potential interception of cookies transmitted over HTTP. Affected versions include 7.1.x (up to 7.1.2.15), 8.0.x (up to 8.0.0.1...