Apache CXF SOAP Action Spoofing Security Bypass Vulnerability

Bugtraq ID: 55628
Class: Design Error
CVE: CVE-2012-3451
Remote: Yes
Local: No
Published: Sep 20 2012 12:00AM
Updated: Apr 13 2015 09:41PM
Credit: Reported by the vendor.
Vulnerable: Redhat JBoss Enterprise Web Platform 5 EL6
Redhat JBoss Enterprise Web Platform 5 EL5
Redhat JBoss Enterprise Web Platform 5 EL4
Redhat Jboss Enterprise Soa Platform 5.3.1
Redhat JBoss Enterprise Application Platform 6
Redhat JBoss Enterprise Application Platform 5 EL6
Redhat JBoss Enterprise Application Platform 5 EL5
Redhat JBoss Enterprise Application Platform 5 EL4
Apache Apache CXF 2.6.1
Apache Apache CXF 2.6
Apache Apache CXF 2.5.4
Apache Apache CXF 2.5.3
Apache Apache CXF 2.4.8
Apache Apache CXF 2.4.7
Apache Apache CXF 2.5.2
Apache Apache CXF 2.5.1
Apache Apache CXF 2.4.6
Apache Apache CXF 2.4.5
Not Vulnerable: Redhat JBoss Enterprise BRMS Platform 5.3.1 Patch 1
Redhat JBoss Enterprise Application Platform 6.0.1
Apache Apache CXF 2.6.2
Apache Apache CXF 2.5.5
Apache Apache CXF 2.4.9


 

Privacy Statement
Copyright 2010, SecurityFocus