Bug 464134 (CVE-2008-3102) - CVE-2008-3102 mantis session hijacking
Summary: CVE-2008-3102 mantis session hijacking
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2008-3102
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL: http://nvd.nist.gov/nvd.cfm?cvename=C...
Whiteboard:
Depends On: 464135 464136 464137
Blocks:
TreeView+ depends on / blocked
 
Reported: 2008-09-26 13:04 UTC by Josh Bressers
Modified: 2019-09-29 12:26 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2008-10-24 18:46:18 UTC
Embargoed:

Attachments (Terms of Use)

Description Josh Bressers 2008-09-26 13:04:47 UTC 
Mantis does not set the secure flag for the session cookie in an https
session, which can cause the cookie to be sent in http requests and
make it easier for remote attackers to capture this cookie.

Reference: BUGTRAQ:20080922 menalto gallery: Session hijacking vulnerability, CVE-2008-3102
Reference: URL:http://www.securityfocus.com/archive/1/archive/1/496625/100/0/threaded
Reference: MISC:http://int21.de/cve/CVE-2008-3102-mantis.html
Comment 2 Tomas Hoger 2008-10-14 15:14:24 UTC 
Upstream bug report:
http://www.mantisbt.org/bugs/view.php?id=9533

Fixed upstream in 1.1.3:
http://www.mantisbt.org/bugs/changelog_page.php
Comment 3 Gianluca Sforna 2008-10-19 08:05:57 UTC 
I had to wait for 1.1.4, since 1.1.3 was broken. building now...
Comment 4 Red Hat Product Security 2008-10-24 18:46:18 UTC 
This issue was addressed in:

Fedora:
  https://admin.fedoraproject.org/updates/F8/FEDORA-2008-9015
  https://admin.fedoraproject.org/updates/F9/FEDORA-2008-8925
Note You need to log in before you can comment on or make changes to this bug.