VULHUB ™

Microsoft Security Bulletin (MS00-080) - Microsoft has released a patch that eliminates the "Session ID Cookie Marking" vulnerability in IIS which allows malicious users who can sniff network traffic to hijack another users's secure web session. Microsoft FAQ on this issue available here.

Microsoft Security Bulletin (MS00-080) - Microsoft has released a patch that eliminates the "Session ID Cookie Marking" vulnerability in IIS which allows malicious users who can sniff network traffic to hijack another users's secure web session. Microsoft FAQ on this issue available here.