[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-3679-1 jackrabbit -- jackrabbit

ID: oval:org.secpod.oval:def:602630Date: (C)2016-09-29   (M)2021-09-12
Class: PATCHFamily: unix




Lukas Reschke discovered that Apache Jackrabbit, an implementation of the Content Repository for Java Technology API, did not correctly check the Content-Type header on HTTP POST requests, enabling Cross-Site Request Forgery attacks by malicious web sites.

Platform:
Debian 8.x
Product:
libjackrabbit-java
Reference:
DSA-3679-1
CVE-2016-6801
CVE    1
CVE-2016-6801
CPE    2
cpe:/o:debian:debian_linux:8.x
cpe:/a:jackrabbit:libjackrabbit-java

© SecPod Technologies