National Cyber Awareness System

Vulnerability Summary for CVE-2010-1632

Overview

Apache Axis2 before 1.5.2, as used in IBM WebSphere Application Server (WAS) 7.0 through 7.0.0.12, IBM Feature Pack for Web Services 6.1.0.9 through 6.1.0.32, IBM Feature Pack for Web 2.0 1.0.1.0, Apache Synapse, Apache ODE, Apache Tuscany, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a crafted DTD, as demonstrated by an entity declaration in a request to the Synapse SimpleStockQuoteService.

Impact

CVSS Severity (version 2.0):

CVSS Version 2 Metrics:

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: CONFIRM

Name: https://svn.apache.org/repos/asf/axis/axis2/java/core/security/CVE-2010-1632.pdf

Hyperlink:https://svn.apache.org/repos/asf/axis/axis2/java/core/security/CVE-2010-1632.pdf

External Source: CONFIRM

Name: https://issues.apache.org/jira/browse/GERONIMO-5383

Hyperlink:https://issues.apache.org/jira/browse/GERONIMO-5383

External Source: CONFIRM

Name: https://issues.apache.org/jira/browse/AXIS2-4450

Hyperlink:https://issues.apache.org/jira/browse/AXIS2-4450

External Source: VUPEN

Name: ADV-2010-1531

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/1531

External Source: VUPEN

Name: ADV-2010-1528

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/1528

External Source: CONFIRM

Name: http://www-01.ibm.com/support/docview.wss?uid=swg21433581

Hyperlink:http://www-01.ibm.com/support/docview.wss?uid=swg21433581

External Source: SECUNIA

Name: 41025

Hyperlink:http://secunia.com/advisories/41025

External Source: SECUNIA

Name: 41016

Hyperlink:http://secunia.com/advisories/41016

External Source: SECUNIA

Name: 40279

Type: Advisory

Hyperlink:http://secunia.com/advisories/40279

External Source: SECUNIA

Name: 40252

Type: Advisory

Hyperlink:http://secunia.com/advisories/40252

External Source: MISC

Name: http://markmail.org/message/e4yiij7lfexastvl

Hyperlink:http://markmail.org/message/e4yiij7lfexastvl

External Source: CONFIRM

Name: http://geronimo.apache.org/22x-security-report.html

Hyperlink:http://geronimo.apache.org/22x-security-report.html

External Source: CONFIRM

Name: http://geronimo.apache.org/21x-security-report.html

Hyperlink:http://geronimo.apache.org/21x-security-report.html

External Source: CONFIRM

Name: http://geronimo.apache.org/2010/07/21/apache-geronimo-v216-released.html

Hyperlink:http://geronimo.apache.org/2010/07/21/apache-geronimo-v216-released.html