CVE-2011-2093

Adobe LiveCycle Data Services 3.1 and earlier, LiveCycle 9.0.0.2 and earlier, and BlazeDS 4.0.1 and earlier do not properly handle object graphs, which allows attackers to cause a denial of service via unspecified vectors, related to a "complex object graph vulnerability."
Configurations

Configuration 1 (hide)

cpe:2.3:a:adobe:blazeds:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:adobe:livecycle_data_services:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle_data_services:2.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle_data_services:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle_data_services:2.6:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle_data_services:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle_data_services:3:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:adobe:livecycle:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle:6.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle:8.0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle:8.0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:livecycle:8.2.1.3:*:*:*:*:*:*:*

History

21 Nov 2024, 01:27

Type Values Removed Values Added
References () http://osvdb.org/73009 - () http://osvdb.org/73009 -
References () http://www.adobe.com/support/security/bulletins/apsb11-15.html - Patch, Vendor Advisory () http://www.adobe.com/support/security/bulletins/apsb11-15.html - Patch, Vendor Advisory
References () http://www.securityfocus.com/bid/48267 - () http://www.securityfocus.com/bid/48267 -
References () http://www.securitytracker.com/id?1025656 - () http://www.securitytracker.com/id?1025656 -
References () http://www.securitytracker.com/id?1025657 - () http://www.securitytracker.com/id?1025657 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/68026 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/68026 -

Information

Published : 2011-06-16 23:55

Updated : 2024-11-21 01:27


NVD link : CVE-2011-2093

Mitre link : CVE-2011-2093

CVE.ORG link : CVE-2011-2093


JSON object : View

Products Affected

adobe

  • blazeds
  • livecycle_data_services
  • livecycle
CWE
CWE-20

Improper Input Validation