Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2004-1478
Description:JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixation attack and hijack a user's HTTP session.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2004-1478
BugTraq ID: 11245
http://www.securityfocus.com/bid/11245
Bugtraq: 20040923 New Macromedia Security Zone Bulletins Posted (Google Search)
http://marc.info/?l=bugtraq&m=109621995623823&w=2
CERT/CC vulnerability note: VU#584958
http://www.kb.cert.org/vuls/id/584958
http://secunia.com/advisories/12638/
XForce ISS Database: jrun-jsessionid-hijack(17481)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17481




© 1998-2024 E-Soft Inc. All rights reserved.