RSS   Vulnerabilities for 'Aggregate'   RSS

2015-11-21
 
CVE-2015-7913

 

 
ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService deployment method to publish a class.

 
 
CVE-2015-7912

 

 
The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document.

 


Copyright 2017, cxsecurity.com

 

Back to Top