Is there any patch or upgrade version of jboss which address apache tomcat hi-jacking vulnerability (CVE-2007-5333)? I am using JBoss 4.0.2. Your response will be highly appreciated and thanks for early response.Himansu