← back
CVE-2008-0900

CVE-2008-0900

EPSS 10.0%
Session fixation vulnerability in BEA WebLogic Server and Express 8.1 SP4 through SP6, 9.2 through MP1, and 10.0 allows remote authenticated users to hijack web sessions via unknown vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://dev2dev.bea.com/pub/advisory/270http://secunia.com/advisories/29041http://www.securitytracker.com/id?1019439http://www.vupen.com/english/advisories/2008/0612/references