Release NotesWeb Agent Release NotesDefects FixedDefects Fixed in 6.x QMR 5 › Cookie Provider Allows Unauthorized Access (44103)

Previous Topic: Web Agent Extracts the First 15 characters from the CustomIpHeader, Opening a Security Risk (42848)

Next Topic: Problems with User Initiated Password Change When SecureUrls Are Enabled (46054)
Cookie Provider Allows Unauthorized Access (44103)

Valid on Windows and Solaris

Symptom:

When a Web Agent is using a cookie provider, if you take the URL of the redirect from the Web Agent log and paste it into a new browser, you will gain access. If you use SecureUrls and paste the URL from the Web server access log into the browser, you will gain access.

Solution:

This is no longer an issue.