CVE-2008-0900

2008-02-2221:00:00

mitre

www.cve.org

AI Score

6.2

Confidence

Low

EPSS

0.002

Percentile

65.3%

JSON

Session fixation vulnerability in BEA WebLogic Server and Express 8.1 SP4 through SP6, 9.2 through MP1, and 10.0 allows remote authenticated users to hijack web sessions via unknown vectors.

References

dev2dev.bea.com/pub/advisory/270

secunia.com/advisories/29041

www.securitytracker.com/id?1019439

www.vupen.com/english/advisories/2008/0612/references