Apache Tomcat CVE-2013-2067 Session Fixation Vulnerability

Apache Tomcat is prone to a session-fixation vulnerability.

An attacker can exploit this issue to hijack an arbitrary session and gain unauthorized access to the affected application.

The following versions are vulnerable:

Tomcat 7.0.0 through 7.0.32
Tomcat 6.0.0 through 6.0.36


 

Privacy Statement
Copyright 2010, SecurityFocus