CVE-2013-4128
Publication date 16 August 2013
Last updated 24 July 2024
Ubuntu priority
Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client.