Apache MyFaces Trinidad CVE-2016-5019 Remote Code Execution Vulnerability

Bugtraq ID: 93236
Class: Serialization Error
CVE: CVE-2016-5019
Remote: Yes
Local: No
Published: Sep 29 2016 12:00AM
Updated: Oct 18 2017 04:03AM
Credit: Teemu Kääriäinen and Andy Schwartz.
Vulnerable: Oracle Utilities Customer Self Service 2.1.0.2.0
Oracle StorageTek Tape Analytics SW Tool 0
Oracle Enterprise Manager Base Platform 13.2.0.0
Oracle Enterprise Manager Base Platform 13.1.0.0
Oracle Enterprise Manager Base Platform 12.1.0.5
Oracle Communications Services Gatekeeper 6.0
Oracle Communications Services Gatekeeper 5.1
Oracle Application Testing Suite 12.5.0.3
Apache MyFaces Trinidad 2.1.1
Apache MyFaces Trinidad 2.0.1
Apache MyFaces Trinidad 1.2.14
Apache MyFaces Trinidad 1.0.13
Not Vulnerable: Oracle StorageTek Tape Analytics SW Tool 2.2.1
Apache MyFaces Trinidad 2.1.2
Apache MyFaces Trinidad 2.0.2
Apache MyFaces Trinidad 1.2.15


 

Privacy Statement
Copyright 2010, SecurityFocus