Session cookies are not used for maintaining valid sessions in iTrack Easy. The user's password is passed as a POST parameter over HTTPS using a base64 encoded passwd field on every request. In this implementation, sessions can only be terminated when the user changes the associated password.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2018-07-13T20:00:00
Updated: 2024-08-06T01:36:27.393Z
Reserved: 2016-08-03T00:00:00
Link: CVE-2016-6545
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-07-13T20:29:00.377
Modified: 2024-11-21T02:56:19.670
Link: CVE-2016-6545
Redhat
No data.