CVE-2002-0933 Information

Description

Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-06/0063.html http://www.iss.net/security_center/static/9316.php http://www.securityfocus.com/bid/4972