Spring Security 'RunAsManager' Local Privilege Escalation Vulnerability

Spring Security is prone to a local privilege-escalation vulnerability.

Local attackers may exploit this issue to gain elevated privileges and perform unauthorized actions.

The following versions are vulnerable:

Spring Security 2.0.0 through 2.0.6
Spring Security 3.0.0 through 3.0.5


 

Privacy Statement
Copyright 2010, SecurityFocus