CVE-2008-0900

Publication date

2008-02-22 21:00:00

Family

mitre

State

PUBLISHED

Description

Session fixation vulnerability in BEA WebLogic Server and Express 8.1 SP4 through SP6, 9.2 through MP1, and 10.0 allows remote authenticated users to hijack web sessions via unknown vectors.