PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 relies on an HTTP session for entering credentials on login pages, which allows remote attackers to obtain sensitive information by sniffing the network.
References
Link | Resource |
---|---|
http://www.kb.cert.org/vuls/id/437385 | US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:20:50
Updated: 2022-10-03T16:20:50
Reserved: 2022-10-03T00:00:00
Link: CVE-2014-2871
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-04-15T23:13:17.617
Modified: 2014-04-16T14:40:20.010
Link: CVE-2014-2871
JSON object: View
Redhat Information
No data.
CWE