Description
Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution
Remediation
References
https://github.com/primefaces/primefaces/issues/1152
https://cryptosense.com/weak-encryption-flaw-in-primefaces/
http://blog.mindedsecurity.com/2016/02/rce-in-oracle-netbeans-opensource.html
https://www.exploit-db.com/exploits/43733/