JBoss Seam Parameterized EL Expressions Remote Code Execution Vulnerability

Bugtraq ID: 41994
Class: Unknown
CVE: CVE-2010-1871
Remote: Yes
Local: No
Published: Jul 27 2010 12:00AM
Updated: May 07 2015 05:27PM
Credit: Meder Kydyraliev of Google Security Team <br>
Vulnerable: Redhat JBoss Enterprise Application Platform 4.3 EL5
Redhat JBoss Enterprise Application Platform 4.3 EL4
Redhat JBoss Enterprise Application Platform 4.3
JBoss Group JBoss Seam 2.0.2
JBoss Group JBoss Seam 2.0 GA
JBoss Group JBoss Seam 2.0 CR3
JBoss Group JBoss Seam 2.0 CR2
JBoss Group JBoss Seam 2.0 CR1
JBoss Group JBoss Seam 2.0.2.SP1
Computer Associates Service Desk Manager 12.7
Computer Associates Service Desk Manager 12.6
Computer Associates Service Desk Manager 12.5
Computer Associates Service Catalog 12.8
Computer Associates Server Automation 12.7.1
Computer Associates Server Automation 12.8
Computer Associates Process Management for Workflows 4.1
Computer Associates Process Management for Workflows 4.0 SP1
Computer Associates Process Automation 4.1
Computer Associates Process Automation 4.0 SP1
Computer Associates Process Automation 4.0
Computer Associates IT Asset Manager (ITAM) 12.8
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus