The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J prior to 1.6.5 is susceptible to a Bleichenbacher attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache wss4j |
||
apache cxf |
||
redhat jboss enterprise soa platform 4.3.0 |
||
redhat jboss enterprise soa platform 4.2.0 |
||
redhat jboss enterprise application platform 5.0.0 |
||
redhat jboss portal 4.0.0 |
||
redhat jboss enterprise web platform 5.0.0 |
||
redhat jboss business rules management system 5.3 |
||
redhat jboss enterprise application platform text-only advisories - |
||
redhat jboss middleware text-only advisories - |
||
redhat jboss web services - |