漏洞信息详情
Apache Axis 输入验证错误漏洞
- CNNVD编号:CNNVD-201211-030
- 危害等级: 中危
- CVE编号: CVE-2012-5784
- 漏洞类型: 输入验证错误
- 发布时间: 2012-11-06
- 威胁类型: 远程
- 更新时间: 2021-04-14
- 厂 商: apache
- 漏洞来源:
漏洞简介
Apache Axis是美国阿帕奇(Apache)软件基金会的一个开源、基于XML的Web服务架构。该产品包含了Java和C++语言实现的SOAP服务器,以及各种公用服务及API,以生成和部署Web服务应用。
Apache Axis 1.4及之前版本中存在输入验证错误漏洞。该漏洞源于网络系统或产品未对输入的数据进行正确的验证。
漏洞公告
目前厂商还没有提供此漏洞的相关补丁或者升级程序,建议使用此软件的用户随时关注厂商的主页以获取最新版本:
http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf
参考网址
来源:REDHAT
链接:http://rhn.redhat.com/errata/RHSA-2013-0269.HTML
来源:REDHAT
链接:http://rhn.redhat.com/errata/RHSA-2013-0683.HTML
来源:MISC
链接:http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf
来源:SECUNIA
链接:http://secunia.com/advisories/51219
来源:REDHAT
链接:http://rhn.redhat.com/errata/RHSA-2014-0037.HTML
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00007.HTML
来源:BID
链接:http://www.securityfocus.com/bid/56408
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/79829
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00022.HTML
来源:BID
链接:https://www.securityfocus.com/bid/56408
来源:MLIST
链接:https://lists.apache.org/thread.HTML/de2af12dcaba653d02b03235327ca4aa930401813a3cced8e151d29c@%3Cjava-dev.axis.apache.org%3E
来源:MLIST
链接:https://lists.apache.org/thread.HTML/44d4e88a5fa8ae60deb752029afe9054da87c5f859caf296fcf585e5@%3Cjava-dev.axis.apache.org%3E
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20191382-1.HTML
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20191373-1.HTML
来源:www.ibm.com
链接:http://www.ibm.com/support/docview.wss?uid=ibm10872142
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20191373-2.HTML
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/75922
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/77926
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/axis-Man-in-the-Middle-29432
来源:www.ibm.com
链接:https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-found-in-axis-jar-v1-x-may-affect-ibm-content-collector-for-sap-applications/
来源:www-01.ibm.com
链接:https://www-01.ibm.com/support/docview.wss?uid=ibm10794505
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2019.1924/
来源:www-01.ibm.com
链接:https://www-01.ibm.com/support/docview.wss?uid=ibm10872142
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2019.1924.2/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2019.3820/
受影响实体
- Apache Axis:1.4
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论