CVE-2008-6298

Name of the Vulnerable Software and Affected Versions: sISAPILocation versions prior to 1.0.2.2

Description: The issue allows remote attackers to bypass intended access restrictions for character encoding and the cookie secure flag. This is related to the HTTP header rewrite function.

Recommendations: For versions prior to 1.0.2.2, update to version 1.0.2.2 or later to resolve the issue.