Vulnerability in PureTLS before 0.9b2 related to injection attacks, which could possibly allow remote attackers to corrupt or hijack user sessions.
http://www.securityfocus.com/bid/4237
http://www.iss.net/security_center/static/8386.php
http://archives.neohapsis.com/archives/bugtraq/2002-03/0056.html