Vulnerabilities > CVE-2004-2681 - Cross-Site Scripting vulnerability in MatrixSSL

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
peersec-networks

Summary

PeerSec MatrixSSL before 1.1 caches session keys for an indefinitely long time, which might make it easier for remote attackers to hijack a session.

Vulnerable Configurations

Part Description Count
Application
Peersec_Networks
1