Description
The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.
Remediation
References
Related Vulnerabilities
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26271)
Oracle Database Server Other Vulnerability (CVE-2006-7141)
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.18)
OpenSSL Other Vulnerability (CVE-2015-3194)
WordPress Plugin Adavnced Video embed Local File Inclusion (1.0)