Description: Corrects an obscure XSS vulnerability in the PMAS GUI
Release date: 28-JAN-2021
Platforms: OpenVMS & Linux
Version: PMAS V3.3
This ECO provides new versions of the PMAS GUI CGI programs pmaslogin
and pmaslogout to prevent an obscure XSS vulnerability. pmaslogin also
increases security of the PMAS cookies by setting the HttpOnly and
Secure flags for the cookies.
Please contact firstname.lastname@example.org for
download instructions for this ECO.