CVE-2010-3700

2010-10-29T19:00:00
ID CVE-2010-3700
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T20:05:00

Description

VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before 3.0.4, and Acegi Security 1.0.0 through 1.0.7, as used in IBM WebSphere Application Server (WAS) 6.1 and 7.0, allows remote attackers to bypass security constraints via a path parameter.