CVE-2012-2735
CVE-2012-2735 is a session-fixation vulnerability in Cumin before 0.1.5444, used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0. An authenticated attacker can pre-set a victim’s Cumin session cookie in the browser, enabling the attacker to hijack the user’s web session after login....