12 matches found
RHSA-2013:1044 Red Hat Security Advisory: jboss-seam2 security update
Bulletin has no description...
RHSA-2011:0461 Red Hat Security Advisory: jboss-seam2 security update
Bulletin has no description...
RHSA-2011:0460 Red Hat Security Advisory: jboss-seam2 security update
Bulletin has no description...
RHSA-2011:0950 Red Hat Security Advisory: jboss-seam2 security update
Bulletin has no description...
RHSA-2010:0564 Red Hat Security Advisory: jboss-seam2 security update
Bulletin has no description...
Arbitrary Code Execution
jboss-seam2 is vulnerable to arbitrary code execution. The vulnerability exists as an input sanitization flaw was found in the way JBoss Seam processed certain parametrized JBoss Expression Language EL expressions. A remote attacker could use this flaw to execute arbitrary code via a URL,...
Remote Code Execution (RCE)
jboss-seam2 is vulnerable to remote code execution RCE attacks. The vulnerability exists as org.jboss.seam.web.AuthenticationFilter in Red Hat JBoss Web Framework Kit 2.5.0, JBoss Enterprise Application Platform JBEAP 5.2.0, and JBoss Enterprise Web Platform JBEWP 5.2.0 allows remote attackers to...
RHEL 4 / 5 : jboss-seam2 (RHSA-2011:0950)
Updated jboss-seam2 packages that fix one security issue are now available for JBoss Enterprise Application Platform 4.3 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...
RHEL 4 / 5 : jboss-seam2 (RHSA-2011:0460)
Updated jboss-seam2 packages that fix one security issue are now available for JBoss Enterprise Application Platform 4.3 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...
RHEL 4 / 5 : jboss-seam2 (RHSA-2010:0564)
Updated jboss-seam2 packages that fix one security issue are now available for JBoss Enterprise Application Platform 4.3 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...
RHEL 4 / 5 : jboss-seam2 (RHSA-2011:0461)
Updated jboss-seam2 packages that fix one security issue are now available for JBoss Enterprise Application Platform 5.1 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...
CVE-2010-1871
CVE-2010-1871 affects JBoss Seam 2 (jboss-seam2) as used in Red Hat Linux’s JBoss Enterprise Application Platform 4.3.0. The vulnerability stems from inadequate sanitization of inputs to JBoss Expression Language (EL) expressions, enabling remote code execution via a crafted URL when the Java Sec...