BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
CVE-2012-0803: Apache CXF does not validate UsernameToken policies correctly
Feb 07 2012 10:39AM
Colm O hEigeartaigh (coheigea apache org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
CVE-2012-0803: Apache CXF does not validate UsernameToken policies correctly
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected: Apache CXF 2.4.5 and 2.5.1
Description: CXF does not validate a WS-Security UsernameToken rec...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Hash: SHA1
CVE-2012-0803: Apache CXF does not validate UsernameToken policies correctly
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected: Apache CXF 2.4.5 and 2.5.1
Description: CXF does not validate a WS-Security UsernameToken rec...
[ more ]