Session ID Exposure via Response.encodeURL Method in Red Hat JBoss Web

Session ID Exposure via Response.encodeURL Method in Red Hat JBoss Web

CVE-2012-4529 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a session, which allows remote attackers to obtain the session id (1) via a man-in-the-middle attack or (2) by reading a log.

Learn more about our Cis Benchmark Audit For Apache Http Server.