CVE-2006-7201 Information

Description

EMC RSA Security SiteKey does not set the secure qualifier on the SiteKey Flash token (aka the PassMark Flash shared object) which might allow remote attackers to obtain the token via HTTP.

Reference

http://www.cr-labs.com/publications/SiteKey-20060718.pdf http://www.cr-labs.com/publications/WhySiteKey-20060824.pdf