CVE-2011-1096

NONECVSS 0.0

0.0

The W3C XML Encryption Standard, as used in the JBoss Web Services (JBossWS) component in JBoss Enterprise Portal Platform before 5.2.2 and other products, when using block ciphers in cipher-block chaining (CBC) mode, allows remote attackers to obtain plaintext data via a chosen-ciphertext attack on SOAP responses, aka "character encoding pattern attack."

🔗 References (62)

secalert@redhathttp://aktuell.ruhr-uni-bochum.de/pm2011/pm00330.html.de
secalert@redhathttp://coheigea.blogspot.com/2012/04/note-on-cve-2011-1096.html
secalert@redhathttp://cxf.apache.org/note-on-cve-2011-1096.html
secalert@redhathttp://dl.acm.org/citation.cfm?id=2046756&dl=ACM&coll=DL
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1301.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1330.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1344.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0191.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0192.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0193.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0194.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0195.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0196.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0197.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0198.html

Is Your Infrastructure Affected by CVE-2011-1096?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2011-1096

📅 Published

🔄 Last Modified

🔗 References (62)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2011-1096?