Two security researchers recently discovered an issue with improperly configured Oracle Access Manager (OAM) 10g that can be exploited by remote attackers to hijack sessions from unsuspecting users.
Article Link: http://feedproxy.google.com/~r/Securityweek/~3/N6m_imWCAQs/researchers-remotely-hijack-oracle-oam-10g-sessions