Описание
Plone CMS before 3 places a base64 encoded form of the username and password in the __ac cookie for all user accounts, which makes it easier for remote attackers to obtain access by sniffing the network.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| zope-cmfplone | removed | package | ||
| zope-cmfplone | no-dsa | etch | package |
Примечания
doesn't apply to v3
more a security enhancement
EPSS
Процентиль: 72%
0.00715
Низкий
Связанные уязвимости
ubuntu
больше 17 лет назад
Plone CMS before 3 places a base64 encoded form of the username and password in the __ac cookie for all user accounts, which makes it easier for remote attackers to obtain access by sniffing the network.
nvd
больше 17 лет назад
Plone CMS before 3 places a base64 encoded form of the username and password in the __ac cookie for all user accounts, which makes it easier for remote attackers to obtain access by sniffing the network.
EPSS
Процентиль: 72%
0.00715
Низкий