Apache CXF JAX-RS CVE-2016-8739 XML External Entity Injection Vulnerability

Bugtraq ID: 97579
Class: Input Validation Error
CVE: CVE-2016-8739
Remote: Yes
Local: No
Published: Dec 19 2016 12:00AM
Updated: Apr 18 2017 03:04AM
Credit: Mikhail Egorov (0ang3el)
Vulnerable: Redhat JBoss Fuse 6.2
Redhat JBoss Fuse 6.0
Redhat JBoss Fuse 6.1.0
Redhat JBoss Fuse 0
Redhat JBoss A-MQ 6.2
Redhat JBoss A-MQ 6.1.0
Redhat JBoss A-MQ 6.0
Apache Cxf 3.1.8
Apache Cxf 3.1.7
Apache Cxf 3.1.3
Apache Cxf 3.1.2
Apache Cxf 3.1.1
Apache Cxf 3.1
Apache Cxf 3.0.11
Apache Cxf 3.0.10
Apache Cxf 3.0.7
Apache Cxf 3.0.6
Apache Cxf 3.0.5
Apache Cxf 3.0.4
Apache Cxf 3.0.3
Apache Cxf 3.0.2
Apache Cxf 3.0.1
Not Vulnerable: Redhat JBoss Fuse 6.3
Redhat JBoss A-MQ 6.3


 

Privacy Statement
Copyright 2010, SecurityFocus