Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0279

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2015-0279
Last Modified 22 Apr 2015 09:59:50
Published 26 Mar 2015 10:59:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0279

Summary

JBoss RichFaces before 4.5.4 allows remote attackers to inject expression language (EL) expressions and execute arbitrary Java code via the do parameter.

Vulnerable Systems

Application

  • Redhat Richfaces 4.5.3


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1192140

REDHAT - RHSA-2015:0719

JVNDB - JVNDB-2015-001959

JVN - JVN#56297719


Last Updated: 27 May 2016 11:08:34