← voltar
CVE-2011-2731

CVE-2011-2731

EPSS 1.2%
Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 stores the Authentication object in the shared security context, which allows attackers to gain privileges via a crafted thread.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677814http://secunia.com/advisories/55155http://support.springsource.com/security/cve-2011-2731http://www.securitytracker.com/id/1029151