Cisco Bug: CSCum54345 - HttpOnly flag for auth cookies
Jan 27, 2017
- Cisco Web Security Appliance
Known Affected Releases
Symptom: The cookie that is sent when using a cookie surrogate option does not contain an HttpOnly flag. Conditions: Using a session or persistent cookie surrogate option within the Identities. GUI> Identities> ''Identity Name''> Authentication Surrogate for Transparent Proxy Mode> Surrogate Type .
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases