Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
[CVE-2015-3253] Apache Groovy Zero-Day Vulnerability Disclosure
Jul 16 2015 10:04AM
CÃ©dric Champeau (cedric champeau gmail com)
Vendor: The Apache Software Foundation
All unsupported versions ranging from 1.7.0 to 2.4.3.
Remote execution of untrusted code, DoS
When an application has Groovy on classpath and that it uses standard
Java serialization mechanims to ...
[ more ]
Copyright 2010, SecurityFocus