Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Mageia Linux Local Security Checks
Title:Mageia Linux Local Check: mgasa-2015-0296
Summary:Mageia Linux Local Security Checks mgasa-2015-0296
Mageia Linux Local Security Checks mgasa-2015-0296

Vulnerability Insight:
When an application has Groovy on the classpath and that it uses standard Java serialization mechanism to communicate between servers, or to store local data, it is possible for an attacker to bake a special serialized object that will execute code directly when deserialized. All applications which rely on serialization and do not isolate the code which deserializes objects are subject to this vulnerability (CVE-2015-3253).

Update the affected packages to the latest available version.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-3253
BugTraq ID: 75919
BugTraq ID: 91787
Bugtraq: 20150716 [CVE-2015-3253] Apache Groovy Zero-Day Vulnerability Disclosure (Google Search)
RedHat Security Advisories: RHSA-2016:0066
RedHat Security Advisories: RHSA-2016:1376
RedHat Security Advisories: RHSA-2017:2486
RedHat Security Advisories: RHSA-2017:2596
CopyrightCopyright (C) 2015 Eero Volotinen

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.