4 matches found
EUVD-2009-0039
Malware in sbrugna...
PT-2024-4722 · Unknown · Сервис Обновлений
Name of the Vulnerable Software and Affected Versions: Сервис обновлений affected versions not specified Description: The issue is related to the WSDL request handler in the "Сервис обновлений" software, which is associated with incorrect restriction of the directory path name. This could allow a...
JBoss EAP unprivileged local xml file access
The request handler in JBossWS in JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.2 before 4.2.0.CP06 and 4.3 before 4.3.0.CP04 does not properly validate the resource path during a request for a WSDL file with a custom web-service endpoint, which allows remote attackers to read...
DEBIAN-CVE-2007-2353
Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non-existent WSDL file, which reveals the installation path in the resulting exception message...