Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
[CVE-2016-8736] Apache Openmeetings RMI Registry Java Deserialization RCE
Nov 13 2016 04:04AM
Maxim Solodovnik (solomax apache org)
Vendor: The Apache Software Foundation
Versions Affected: Apache OpenMeetings 3.1.0
Description: Apache Openmeetings is vulnerable to Remote Code
Execution via RMI deserialization attack
The issue was fixed in 3.1.2
All users are recommended to upgrade to Apache OpenMeetings 3...
[ more ]
Copyright 2010, SecurityFocus