[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250053

 
 

909

 
 

195940

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS2-2018-1041 --- xmlrpc

ID: oval:org.secpod.oval:def:1700058Date: (C)2018-06-29   (M)2024-01-29
Class: PATCHFamily: unix




A flaw was discovered in the Apache XML-RPC library that deserializes untrusted data when enabledForExtensions setting is enabled. A remote attacker could use this vulnerability to execute arbitrary code via a crafted serialized Java object in a lt;ex:serializablegt; element.

Platform:
Amazon Linux 2
Product:
xmlrpc
Reference:
ALAS2-2018-1041
CVE-2016-5003
CVE    1
CVE-2016-5003
CPE    2
cpe:/a:apache:xmlrpc
cpe:/o:amazon:linux:2

© SecPod Technologies