CVE-2008-6298

2009-02-2616:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

79.3%

JSON

Unspecified vulnerability in sISAPILocation before 1.0.2.2 allows remote attackers to bypass intended access restrictions for character encoding and the cookie secure flag via unknown vectors related to the “HTTP header rewrite function.”

References

jvn.jp/en/jp/JVN67060882/index.html

jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000076.html

rocketeer.dip.jp/sanaki/free/free100.htm

secunia.com/advisories/32581

www.securityfocus.com/bid/32247

www.vupen.com/english/advisories/2008/3105

exchange.xforce.ibmcloud.com/vulnerabilities/46516