CVE-2012-4529

CVE-2012-4529 affects Red Hat JBoss Web 7.1.x and earlier when COOKIE session tracking is used, where org.apache.catalina.connector.Response.encodeURL() may append jsessionid to the first response URL, enabling session hijacking via MITM or log exposure. Connected advisories indicate Red Hat JBos...

RHEL 6 : JBoss Enterprise Application Platform 6.1.0 update (Important) (RHSA-2013:0834)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0834 advisory. JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a...

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 6.1.0 update

Updated JBoss Enterprise Application Platform 6.1.0 packages that fix three security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability...

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 6.1.0 update

Updated JBoss Enterprise Application Platform 6.1.0 packages that fix three security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability...