CVE - CVE-2012-3451

CVE-ID
CVE-2012-3451	Learn more at National Vulnerability Database (NVD) • Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
Apache CXF before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 allows remote attackers to execute unintended web-service operations by sending a header with a SOAP Action String that is inconsistent with the message body.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://bugzilla.redhat.com/show_bug.cgi?id=851896 CONFIRM:http://cxf.apache.org/cve-2012-3451.html CONFIRM:http://svn.apache.org/viewvc?view=revision&revision=1368559 REDHAT:RHSA-2012:1591 URL:http://rhn.redhat.com/errata/RHSA-2012-1591.html REDHAT:RHSA-2012:1592 URL:http://rhn.redhat.com/errata/RHSA-2012-1592.html REDHAT:RHSA-2012:1594 URL:http://rhn.redhat.com/errata/RHSA-2012-1594.html REDHAT:RHSA-2013:0256 URL:http://rhn.redhat.com/errata/RHSA-2013-0256.html REDHAT:RHSA-2013:0257 URL:http://rhn.redhat.com/errata/RHSA-2013-0257.html REDHAT:RHSA-2013:0258 URL:http://rhn.redhat.com/errata/RHSA-2013-0258.html REDHAT:RHSA-2013:0259 URL:http://rhn.redhat.com/errata/RHSA-2013-0259.html REDHAT:RHSA-2013:0726 URL:http://rhn.redhat.com/errata/RHSA-2013-0726.html REDHAT:RHSA-2013:0743 URL:http://rhn.redhat.com/errata/RHSA-2013-0743.html SECUNIA:51607 URL:http://secunia.com/advisories/51607 SECUNIA:52183 URL:http://secunia.com/advisories/52183 XF:apache-cfx-soapaction-security-bypass(78734) URL:http://xforce.iss.net/xforce/xfdb/78734
Date Entry Created
20120614	Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20120614)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE list, which standardizes names for security problems.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Common Vulnerabilities and Exposures

CVE-2012-3451