Unspecified vulnerability in BlazeDS 3.2 and earlier, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8.0.1, and 9.0, allows remote attackers to obtain sensitive information via vectors that are associated with a request, and related to injected tags and external entity references in XML documents.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: adobe
Published: 2010-02-15T18:00:00
Updated: 2017-08-15T09:57:01
Reserved: 2009-11-16T00:00:00
Link: CVE-2009-3960
JSON object: View
NVD Information
Status : Modified
Published: 2010-02-15T18:30:00.407
Modified: 2017-08-16T01:29:00.447
Link: CVE-2009-3960
JSON object: View
Redhat Information
No data.
CWE