CVE-2010-1632: Input Validation
First published: Tue Jun 22 2010(Updated: )
Apache Axis2 before 1.5.2, as used in IBM WebSphere Application Server (WAS) 7.0 through 7.0.0.12, IBM Feature Pack for Web Services 6.1.0.9 through 6.1.0.32, IBM Feature Pack for Web 2.0 1.0.1.0, Apache Synapse, Apache ODE, Apache Tuscany, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a crafted DTD, as demonstrated by an entity declaration in a request to the Synapse SimpleStockQuoteService.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.1 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.2 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.3 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.4 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.5 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.6 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.7 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.8 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.9 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.10 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.11 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =7.0.0.12 | |
| Apache HTTP Server | <=1.5.1 | |
| Apache HTTP Server | =1.3 | |
| Apache HTTP Server | =1.4 | |
| Apache HTTP Server | =1.4.1 | |
| Apache HTTP Server | =1.5 | |
| Red Hat Geronimo | ||
| Apache Orchestration Director Engine | ||
| Apache Synapse | ||
| Apache Tuscany |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www-1.ibm.com/support/docview.wss?uid=swg1PM14844
- https://issues.apache.org/jira/browse/AXIS2-4450
- http://www-01.ibm.com/support/docview.wss?uid=swg21433581
- http://www.vupen.com/english/advisories/2010/1528
- http://secunia.com/advisories/40252
- https://svn.apache.org/repos/asf/axis/axis2/java/core/security/CVE-2010-1632.pdf
- http://www.vupen.com/english/advisories/2010/1531
- http://markmail.org/message/e4yiij7lfexastvl
- http://www-1.ibm.com/support/docview.wss?uid=swg1PM14847
- http://secunia.com/advisories/40279
- http://www-1.ibm.com/support/docview.wss?uid=swg1PM14765
- http://geronimo.apache.org/2010/07/21/apache-geronimo-v216-released.html
- https://issues.apache.org/jira/browse/GERONIMO-5383
- http://secunia.com/advisories/41016
- http://geronimo.apache.org/22x-security-report.html
- http://geronimo.apache.org/21x-security-report.html
- http://secunia.com/advisories/41025
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289984
- http://www.securitytracker.com/id/1036901
Frequently Asked Questions
What is the severity of CVE-2010-1632?
CVE-2010-1632 is classified as a medium severity vulnerability.
How do I fix CVE-2010-1632?
To fix CVE-2010-1632, upgrade to Apache Axis2 version 1.5.2 or later.
What software is affected by CVE-2010-1632?
CVE-2010-1632 affects Apache Axis2 versions up to 1.5.1, IBM WebSphere Application Server 7.0, and some other related software products.
What happens if I don't mitigate CVE-2010-1632?
Failure to mitigate CVE-2010-1632 may lead to potential unauthorized access or manipulation of web services.
Is there a patch available for CVE-2010-1632?
Yes, upgrading to Apache Axis2 version 1.5.2 or later serves as a patch for CVE-2010-1632.
- collector/nvd-historical
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ibm
- canonical/ibm websphere application server feature pack for web services
- version/ibm websphere application server feature pack for web services/7.0
- version/ibm websphere application server feature pack for web services/7.0.0.1
- version/ibm websphere application server feature pack for web services/7.0.0.2
- version/ibm websphere application server feature pack for web services/7.0.0.3
- version/ibm websphere application server feature pack for web services/7.0.0.4
- version/ibm websphere application server feature pack for web services/7.0.0.5
- version/ibm websphere application server feature pack for web services/7.0.0.6
- version/ibm websphere application server feature pack for web services/7.0.0.7
- version/ibm websphere application server feature pack for web services/7.0.0.8
- version/ibm websphere application server feature pack for web services/7.0.0.9
- version/ibm websphere application server feature pack for web services/7.0.0.10
- version/ibm websphere application server feature pack for web services/7.0.0.11
- version/ibm websphere application server feature pack for web services/7.0.0.12
- vendor/apache
- canonical/apache http server
- version/apache http server/1.5.1
- version/apache http server/1.3
- version/apache http server/1.4
- version/apache http server/1.4.1
- version/apache http server/1.5
- canonical/red hat geronimo
- canonical/apache orchestration director engine
- canonical/apache synapse
- canonical/apache tuscany