Cleartext Transmission of Session ID in OpenText Exceed OnDemand (EoD) 8

Cleartext Transmission of Session ID in OpenText Exceed OnDemand (EoD) 8

CVE-2013-6994 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

OpenText Exceed OnDemand (EoD) 8 transmits the session ID in cleartext, which allows remote attackers to perform session fixation attacks by sniffing the network.

Learn more about our Network Penetration Testing.