Dojo Toolkit Open Direct Cookie Reading Vulnerability

Dojo Toolkit Open Direct Cookie Reading Vulnerability

CVE-2010-4600 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Dojo Toolkit, as used in the Web client in IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and 7.1.2.x before 7.1.2.1, allows remote attackers to read cookies by navigating to a Dojo file, related to an "open direct" issue.

Learn more about our Cis Benchmark Audit For Ibm I.