SecuritySpace - CVE-2009-3960

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2009-3960

Description: Unspecified vulnerability in BlazeDS 3.2 and earlier, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8.0.1, and 9.0, allows remote attackers to obtain sensitive information via vectors that are associated with a request, and related to injected tags and external entity references in XML documents.

Test IDs: 1.3.6.1.4.1.25623.1.0.105211

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-3960
BugTraq ID: 38197
http://www.securityfocus.com/bid/38197
https://www.exploit-db.com/exploits/41855/
http://www.osvdb.org/62292
http://securitytracker.com/id?1023584
http://secunia.com/advisories/38543

CVE ID:	CVE-2009-3960
Description:	Unspecified vulnerability in BlazeDS 3.2 and earlier, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8.0.1, and 9.0, allows remote attackers to obtain sensitive information via vectors that are associated with a request, and related to injected tags and external entity references in XML documents.
Test IDs:	1.3.6.1.4.1.25623.1.0.105211
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3960 BugTraq ID: 38197 http://www.securityfocus.com/bid/38197 https://www.exploit-db.com/exploits/41855/ http://www.osvdb.org/62292 http://securitytracker.com/id?1023584 http://secunia.com/advisories/38543