Privilege Escalation

An attack technique against the W3C XML Encryption Standard when block ciphers were used in CBC mode could allow a remote attacker to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram. CVE-2011-1096 JBoss Web Services leaked side-channe...

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update

JBoss Enterprise Application Platform 5.2.0, which fixes multiple security issues, various bugs, and adds several enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability...

CVE-2012-2377

CVE-2012-2377 affects: JBoss Enterprise Portal Platform <5.2.2, JBoss SOA Platform <5.3.0, and BRMS Platform

JBoss Enterprise BRMS Platform JGroups Diagnostics Service信息泄露漏洞

BUGTRAQ ID: 54183 CVE ID: CVE-2012-2377 JBoss Enterprise BRMS Platform是开源的业务规则和BPM平台。 JBoss Enterprise BRMS Platform 5.2.0及其他版本在实现上存在信息泄露漏洞，成功利用后可允许攻击者获取敏感信息。 0 JBoss Group JBooss Enterprise SOA Platform 5.1.2 厂商补丁： JBoss Group ----------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.jboss.org/...