Back to search
CVE-2013-4213
Published: Aug 16, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by the EJB client API, which allows remote attackers to hijack sessions by using an EJB client.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2013:1152
vendor-advisory
x_refsource_REDHAT
eap-cve20134213-session-hijacking(86387)
vdb-entry
x_refsource_XF
96216
vdb-entry
x_refsource_OSVDB
54508
third-party-advisory
x_refsource_SECUNIA
RHSA-2013:1437
vendor-advisory
x_refsource_REDHAT
1028898
vdb-entry
x_refsource_SECTRACK
https://bugzilla.redhat.com/show_bug.cgi?id=985359
x_refsource_CONFIRM
RHSA-2013:1151
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now