| http://www.w3.org/ns/prov#value | - A remote attacker could use this flawto obtain sensitive information, such as session IDs, and then use thisinformation for session hijacking attacks. (CVE-2007-5333)Note: The fix for the CVE-2007-5333 flaw changes the default cookieprocessing behavior: With this update, version 0 cookies that containvalues that must be quoted to be valid are automatically changed to version1 cookies.
|
