RedHat JBoss Data Virtualization XML External Entity Vulnerability (CVE-2014-0170)
Severity: MEDIUM
Advisory Date: MAY 31, 2016
DESCRIPTION
Teiid before 8.4.3 and before 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote attackers to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005839