Описание
Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:commercial_internet_system:2.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:commercial_internet_system:2.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:site_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:site_server_commerce:3.0:alpha:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.19634
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user.
EPSS
Процентиль: 95%
0.19634
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other