CVE-2013-6994

Currently unrated

Key Information:

Vendor: Opentext
Status: Exceed Ondemand
Vendor: CVE Published:; 19 May 2014

Summary

OpenText Exceed OnDemand (EoD) 8 transmits the session ID in cleartext, which allows remote attackers to perform session fixation attacks by sniffing the network.

References

https://github.com/koto/exceed-mitm

x_refsource_MISC

Timeline

Vulnerability published
May 19, 2014
Vulnerability Reserved
Dec 6, 2013