Apache HttpComponents 'HttpClient' Information Disclosure Vulnerability

Apache HttpComponents is prone to an information-disclosure vulnerability that may expose users' passwords. The issue occurs in the 'HttpClient' component.

Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks.

HttpClient 4.1 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus