The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a session, which allows remote attackers to obtain the session id (1) via a man-in-the-middle attack or (2) by reading a log.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Jboss_community_application_server | Redhat | * | 7.1.1 |
| Jboss_community_application_server | Redhat | 5.0.0 | 5.0.0 |
| Jboss_community_application_server | Redhat | 5.0.1 | 5.0.1 |
| Jboss_community_application_server | Redhat | 5.1.0 | 5.1.0 |
| Jboss_community_application_server | Redhat | 6.0.0 | 6.0.0 |
| Jboss_community_application_server | Redhat | 6.1.0 | 6.1.0 |
| Jboss_community_application_server | Redhat | 7.0.0 | 7.0.0 |
| Jboss_community_application_server | Redhat | 7.0.1 | 7.0.1 |
| Jboss_community_application_server | Redhat | 7.0.2 | 7.0.2 |
| Jboss_community_application_server | Redhat | 7.1.0 | 7.1.0 |