ID CVE-2012-4529
Summary The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a session, which allows remote attackers to obtain the session id (1) via a man-in-the-middle attack or (2) by reading a log.
References
Vulnerable Configurations
  • cpe:2.3:a:redhat:jboss_community_application_server:5.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:5.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:5.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:5.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:5.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:5.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:6.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:6.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:6.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:7.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:7.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:7.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:7.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_community_application_server:7.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_community_application_server:7.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 30-10-2013 - 14:49)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:N/A:N
redhat via4
advisories
  • rhsa
    id RHSA-2013:0833
  • rhsa
    id RHSA-2013:0834
  • rhsa
    id RHSA-2013:0839
  • rhsa
    id RHSA-2013:1437
refmap via4
confirm https://issues.jboss.org/browse/JBWEB-249
misc http://ocpsoft.org/support/topic/session-id-is-appended-as-url-path-parameter-in-very-first-request/
Last major update 30-10-2013 - 14:49
Published 28-10-2013 - 21:55
Back to Top