squirrelmail

squirrelmail: session hijacking vulnerability

squirrelmail: session hijacking vulnerability

Squirrelmail was updated to use the secure flag for its cookies. Otherwise it was possible to hijack a SSL-protected session via leaked cookies. (CVE-2008-3663) Squirrelmail was updated to use the secure flag for its cookies. Otherwise it was possible to hijack a SSL-protected session via leaked cookies. (CVE-2008-3663) security squirrelmail noarch 60967e449b1020cef90a62b192aa85ad1e21a57e b7e10d204ba212ae41a9d0091e61357777280613 1a8709f783259a5a1793cf5b6b65e23416556518 3cccb0ad5d53851e78a8a138b34d47b26f47d1d0