CVE-2012-2735

Session fixation vulnerability in Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allows remote attackers to hijack web sessions via a crafted session cookie.

🔗 References (12)

• secalert@redhathttp://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=832151
• secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1278.html
• secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1281.html
• secalert@redhathttp://secunia.com/advisories/50660
• secalert@redhathttp://www.securityfocus.com/bid/55618
• secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/78776
• af854a3a-2127-422b-91ae-364da2661108http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=832151
• af854a3a-2127-422b-91ae-364da2661108http://rhn.redhat.com/errata/RHSA-2012-1278.html
• af854a3a-2127-422b-91ae-364da2661108http://rhn.redhat.com/errata/RHSA-2012-1281.html
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/50660
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/55618
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/78776