CVE-2012-2966

CVE-2012-2966

EPSS 1.6%

Caucho Quercus, as distributed in Resin before 4.0.29, overwrites entries in the SERVER superglobal array on the basis of POST parameters, which has unspecified impact and remote attack vectors.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://caucho.com/resin-4.0/changes/changes.xtp http://en.securitylab.ru/lab/http://en.securitylab.ru/lab/PT-2012-05 http://www.kb.cert.org/vuls/id/309979