Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-2894

Опубликовано: 09 сент. 2011
Источник: redhat
CVSS2: 7.5
EPSS Средний

Описание

Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, and possibly other versions deserialize objects from untrusted sources, which allows remote attackers to bypass intended security restrictions and execute untrusted code by (1) serializing a java.lang.Proxy instance and using InvocationHandler, or (2) accessing internal AOP interfaces, as demonstrated using deserialization of a DefaultListableBeanFactory instance to execute arbitrary commands via the java.lang.Runtime class.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat JBoss BRMS 5unspecifiedNot affected
Red Hat JBoss SOA Platform 5.1FixedRHSA-2011:133422.09.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-502
https://bugzilla.redhat.com/show_bug.cgi?id=737611Security: Chosen commands execution on the server (Framework) or authentication token bypass (Security) by objects de-serialization

EPSS

Процентиль: 95%
0.19567
Средний

7.5 High

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-2894

ubuntu
больше 13 лет назад

Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, and possibly other versions deserialize objects from untrusted sources, which allows remote attackers to bypass intended security restrictions and execute untrusted code by (1) serializing a java.lang.Proxy instance and using InvocationHandler, or (2) accessing internal AOP interfaces, as demonstrated using deserialization of a DefaultListableBeanFactory instance to execute arbitrary commands via the java.lang.Runtime class.

nvd логотип

CVE-2011-2894

nvd
больше 13 лет назад

Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, and possibly other versions deserialize objects from untrusted sources, which allows remote attackers to bypass intended security restrictions and execute untrusted code by (1) serializing a java.lang.Proxy instance and using InvocationHandler, or (2) accessing internal AOP interfaces, as demonstrated using deserialization of a DefaultListableBeanFactory instance to execute arbitrary commands via the java.lang.Runtime class.

debian логотип

CVE-2011-2894

debian
больше 13 лет назад

Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3. ...

github логотип

GHSA-f866-m9mv-2xr3

github
около 3 лет назад

Spring Framework and Spring Security vulnerable to Deserialization of Untrusted Data

EPSS

Процентиль: 95%
0.19567
Средний

7.5 High

CVSS2