Endpoint Vulnerability

Apache Httpd - moderate:error responses can expose cookies(CVE-2012-0053)

Description

A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose 'httpOnly' cookies when no custom ErrorDocument is specified.

Affected Products

Apache Httpd

References

CVE-2012-0053,