Description

The org.picketlink.common.util.DocumentUtil.getDocumentBuilderFactory method in PicketLink, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 5.2.0 and 6.2.4, expands entity references, which allows remote attackers to read arbitrary code and possibly have other unspecified impact via unspecified vectors, related to an XML External Entity (XXE) issue.

Remediation

References

http://rhn.redhat.com/errata/RHSA-2014-0883.html

http://rhn.redhat.com/errata/RHSA-2014-0884.html

http://rhn.redhat.com/errata/RHSA-2014-0885.html

http://rhn.redhat.com/errata/RHSA-2014-0886.html

http://rhn.redhat.com/errata/RHSA-2015-0091.html

http://rhn.redhat.com/errata/RHSA-2015-0675.html

http://rhn.redhat.com/errata/RHSA-2015-0720.html

http://rhn.redhat.com/errata/RHSA-2015-0765.html

http://rhn.redhat.com/errata/RHSA-2015-1888.html

http://secunia.com/advisories/60047

http://secunia.com/advisories/60124

http://www.securitytracker.com/id/1030607

https://exchange.xforce.ibmcloud.com/vulnerabilities/94700

Related Vulnerabilities

CVE-2014-3667 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2018-16474 Vulnerability in npm package tianma-static

CVE-2019-1003003 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2016-0732 Vulnerability in maven package org.cloudfoundry.identity:cloudfoundry-identity-common

CVE-2018-1275 Vulnerability in maven package org.springframework:spring-messaging

Severity

Critical

Classification

CWE-200

Tags

Vendor Advisory