EUVD-2011-2318

Malware in sbrugna...

WS-Attacker v1.8 - Modular Framework For Web Services Penetration Testing

WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum http://nds.rub.de/ and the Hackmanit GmbH http://hackmanit.de/ . The basic idea behind WS-Attacker is to provide a functionality to load WSDL...

CVE-2011-2329

The ramparttimestamptokenvalidate function in util/ramparttimestamptoken.c in Apache Rampart/C 1.3.0 does not properly calculate the expiration of timestamp tokens, which allows remote attackers to bypass intended access restrictions by leveraging an expired token, a different vulnerability than...

Design/Logic Flaw

The ramparttimestamptokenvalidate function in util/ramparttimestamptoken.c in Apache Rampart/C 1.3.0 does not properly calculate the expiration of timestamp tokens, which allows remote attackers to bypass intended access restrictions by leveraging an expired token, a different vulnerability than...

CVE-2011-2329

CVE-2011-2329 relates to Apache Rampart/C 1.3.0 where the rampart_timestamp_token_validate function miscomputes the expiration of timestamp tokens. This allows remote attackers to bypass access restrictions by leveraging an expired token (not related to CVE-2011-0730). The connected records confi...

CVE-2011-2329

The ramparttimestamptokenvalidate function in util/ramparttimestamptoken.c in Apache Rampart/C 1.3.0 does not properly calculate the expiration of timestamp tokens, which allows remote attackers to bypass intended access restrictions by leveraging an expired token, a different vulnerability than...