CVE-2013-4128

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 11-07-2013 02:00

Last modified: - 11-07-2013 02:00

Total changes: - 8

Description

CVE-2013-4128 JBoss remote-naming: Session fixation due improper connection caching

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:P/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

Low

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

6.4

Base score

Exploitability score

Impact score

Verification logic

OR

AND

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6.1

AND

product=jboss-as-client-all-0 AND versionEndExcluding=7.2.0-9.Final_redhat_9.ep6.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

product=jboss-ejb-client-0 AND versionEndExcluding=1.0.21-2.Final_redhat_2.ep6.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

product=jboss-remote-naming-0 AND versionEndExcluding=1.0.6-3.Final_redhat_3.ep6.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

product=jboss-as-client-all-0 AND versionEndExcluding=7.2.0-9.Final_redhat_9.ep6.el6

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

product=jboss-ejb-client-0 AND versionEndExcluding=1.0.21-2.Final_redhat_2.ep6.el6

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

product=jboss-remote-naming-0 AND versionEndExcluding=1.0.6-3.Final_redhat_3.ep6.el6

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=6

AND

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_portal_platform AND version=6.1.0

AND

product=remote-naming AND version=

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_portal_platform AND version=6

Reference

Keywords

REDHAT

CVE-2013-4128

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.