Vulnerability Details CVE-2011-2093
Adobe LiveCycle Data Services 3.1 and earlier, LiveCycle 9.0.0.2 and earlier, and BlazeDS 4.0.1 and earlier do not properly handle object graphs, which allows attackers to cause a denial of service via unspecified vectors, related to a "complex object graph vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.028
EPSS Ranking 85.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/73009
- http://www.adobe.com/support/security/bulletins/apsb11-15.html
- http://www.securityfocus.com/bid/48267
- http://www.securitytracker.com/id?1025656
- http://www.securitytracker.com/id?1025657
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68026
- http://osvdb.org/73009
- http://www.adobe.com/support/security/bulletins/apsb11-15.html
- http://www.securityfocus.com/bid/48267
- http://www.securitytracker.com/id?1025656
- http://www.securitytracker.com/id?1025657
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68026
Products affected by CVE-2011-2093
-
cpe:2.3:a:adobe:blazeds:*
-
cpe:2.3:a:adobe:livecycle:6.0
-
cpe:2.3:a:adobe:livecycle:7.0
-
cpe:2.3:a:adobe:livecycle:8.0.1
-
cpe:2.3:a:adobe:livecycle:8.0.1.1
-
cpe:2.3:a:adobe:livecycle:8.0.1.2
-
cpe:2.3:a:adobe:livecycle:8.2.1
-
cpe:2.3:a:adobe:livecycle:8.2.1.3
-
cpe:2.3:a:adobe:livecycle:9.0
-
cpe:2.3:a:adobe:livecycle_data_services:2.5
-
cpe:2.3:a:adobe:livecycle_data_services:2.5.1
-
cpe:2.3:a:adobe:livecycle_data_services:2.6
-
cpe:2.3:a:adobe:livecycle_data_services:2.6.1
-
cpe:2.3:a:adobe:livecycle_data_services:3
-
cpe:2.3:a:adobe:livecycle_data_services:3.0