[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Proofpoint Protection Server Session Persistence

To: bugtraq@xxxxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Proofpoint Protection Server Session Persistence
From: BugsNotHugs <bugsnothugs@xxxxxxxxx>
Date: Fri, 01 Mar 2013 22:20:29 -0700

Proofpoint Protection Server Session Persistence

A vulnerability exists in Proofpoint Protection Server (ver 4.0.7.67) 
where a session to the web admin interface is not terminated after the 
device reboots. Session should be terminated upon logout, especially if 
the device reboots.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Paypal Bug Bounty #5 - Persistent Web Vulnerability
Next by Date: Re: [Full-disclosure] list patch
Previous by thread: [Full-disclosure] Paypal Bug Bounty #5 - Persistent Web Vulnerability
Next by thread: [Full-disclosure] Administrivia: FD Returns
Index(es):
- Date
- Thread