RedHat JBoss Data Virtualization XML External Entity Vulnerability (CVE-2014-0170)
2016年5月31日
危険度: 中
情報公開日: 5 31, 2016
概要
Teiid before 8.4.3 and before 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote attackers to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.
トレンドマイクロの対策
Apply associated Trend Micro DPI Rules.
対応方法
Trend Micro Deep Security DPI Rule Number: 1005839