General Information

Ineffective Session Termination

Variants:
Direct 

Also Known As:
Ineffective Logout

Vector Type:
Vulnerability

Relevance:
Generic

Layer:
Application-Level

Platforms:
Any

Target Type:
Application

Affected Mechanisms:
Session Management, Logout

Invented In:
01/01/1999

Added In:
23/12/2014


Vector Operation Method:
Logout feature does not invalidate session identifier.


Direct Variant:

Ineffective Session Termination

Also Known As:
Ineffective Logout

Typical Severity:
Minor

Resources:

White Papers:

Learn More: