JBoss Seam Parameterized EL Expressions Remote Code Execution Vulnerability

Bugtraq ID: 41994
Class: Unknown
CVE: CVE-2010-1871
Remote: Yes
Local: No
Published: Jul 27 2010 12:00AM
Updated: Jul 27 2010 12:00AM
Credit: Meder Kydyraliev of Google Security Team <br>
Vulnerable: Red Hat JBoss Enterprise Application Platform 4.3 EL5
Red Hat JBoss Enterprise Application Platform 4.3 EL4
Red Hat JBoss Enterprise Application Platform 4.3
JBoss Group JBoss Seam 2.0.2
JBoss Group JBoss Seam 2.0 GA
JBoss Group JBoss Seam 2.0 CR3
JBoss Group JBoss Seam 2.0 CR2
JBoss Group JBoss Seam 2.0 CR1
JBoss Group JBoss Seam 2.0.2.SP1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus