CVE-2011-2894

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 04-10-2011 12:55

Last modified: - 17-07-2022 10:15

Total changes: - 4

Description

Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, and possibly other versions deserialize objects from untrusted sources, which allows remote attackers to bypass intended security restrictions and execute untrusted code by (1) serializing a java.lang.Proxy instance and using InvocationHandler, or (2) accessing internal AOP interfaces, as demonstrated using deserialization of a DefaultListableBeanFactory instance to execute arbitrary commands via the java.lang.Runtime class.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:P/I:P/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

Privileges required

Scope

User interaction

6.8

Base score

8.6

6.4

Exploitability score

Impact score

Verification logic

Reference

49536-Third Party Advisory, VDB Entry
http://www.springsource.com/security/cve-2011-2894
75263-Broken Link
RHSA-2011:1334-Third Party Advisory
8405-Third Party Advisory
spring-framework-object-sec-bypass(69687)-Third Party Advisory, VDB Entry
20110909 CVE-2011-2894: Spring Framework and Spring Security serialization-based remoting vulnerabilities-Third Party Advisory, VDB Entry
https://web.archive.org/web/20120307233721/http://www.springsource.com/security/cve-2011-2894

Keywords

CVE-2011-2894

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2011-2894

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures