BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[CVE-2015-3253] Apache Groovy Zero-Day Vulnerability Disclosure Jul 16 2015 10:04AM
Cédric Champeau (cedric champeau gmail com)
Severity: Important

Vendor: The Apache Software Foundation

Versions Affected:

All unsupported versions ranging from 1.7.0 to 2.4.3.

Impact

Remote execution of untrusted code, DoS

Description

When an application has Groovy on classpath and that it uses standard
Java serialization mechanims to ...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus