CVE-2011-2487 (cxf, jboss_business_rules_management_system, jboss_enterprise_application_platform, jboss_enterprise_application_platform_text-only_advisories, jboss_enterprise_soa_platform, jboss_enterprise_web_platform, jboss_middleware_text-only_advisories, jboss_portal, jboss_web_services, wss4j)

The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.

View Full Alert

Leave a Reply