Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
Impala 1.3.1
-
None
-
None
-
1 name node 3 datanodes
Description
I just recieved this issue from our Nessus application
Synopsis :
The remote web server is prone to a cookie injection attack.
Description :
The remote host is running a web server that fails to adequately
sanitize request strings of malicious JavaScript. By leveraging this
issue, an attacker may be able to inject arbitrary cookies. Depending
on the structure of the web application, it may be possible to launch
a 'session fixation' attack using this mechanism.