CVE-2011-2487

Summary

The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.

Affected Software

VendorProductVersion RangeStatus
ApacheWSS4Jbefore 1.6.5affected
Red HatJBossWSunknownaffected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References