CVE-2016-4464
First published: Wed Sep 21 2016(Updated: )
The application plugins in Apache CXF Fediz 1.2.x before 1.2.3 and 1.3.x before 1.3.1 do not match SAML AudienceRestriction values against configured audience URIs, which might allow remote attackers to have bypass intended restrictions and have unspecified other impact via a crafted SAML token with a trusted signature.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache CXF Fediz | =1.2.0 | |
| Apache CXF Fediz | =1.2.1 | |
| Apache CXF Fediz | =1.2.2 | |
| Apache CXF Fediz | =1.3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://cxf.apache.org/security-advisories.data/CVE-2016-4464.txt.asc
- http://www.openwall.com/lists/oss-security/2016/09/08/20
- http://www.securityfocus.com/bid/92905
- http://www.securitytracker.com/id/1036869
- https://git-wip-us.apache.org/repos/asf?p=cxf-fediz.git;a=commit;h=0006581e9cacbeef46381a223e5671e524d416b6
- https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
- https://git-wip-us.apache.org/repos/asf?p=cxf-fediz.git%3Ba=commit%3Bh=0006581e9cacbeef46381a223e5671e524d416b6
- https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
- https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
Frequently Asked Questions
What is the severity of CVE-2016-4464?
CVE-2016-4464 is rated as a medium severity vulnerability.
How do I fix CVE-2016-4464?
To fix CVE-2016-4464, upgrade to Apache CXF Fediz version 1.2.3 or 1.3.1 or later.
What systems are affected by CVE-2016-4464?
CVE-2016-4464 affects Apache CXF Fediz versions 1.2.0 through 1.2.2 and 1.3.0.
What is the impact of CVE-2016-4464?
CVE-2016-4464 allows remote attackers to bypass audience restrictions via crafted SAML tokens.
Is there a workaround for CVE-2016-4464?
There are no known workarounds for CVE-2016-4464; updating is recommended.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/references
- agent/remedy
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- agent/source
- vendor/apache
- canonical/apache cxf fediz
- version/apache cxf fediz/1.2.0
- version/apache cxf fediz/1.2.1
- version/apache cxf fediz/1.2.2
- version/apache cxf fediz/1.3.0