漏洞类别:CGI
漏洞等级: 
漏洞信息
The host runs a Java application that suffers from Java Deserialization vulnerability. The application accepts serialized objects, however it does not validate or check untrusted input before deserializing it.
漏洞危害
An unauthenticated, remote attacker could exploit this vulnerability to execute arbitrary Java code on the system.
解决方案
Customers are advised to contact the vendor to patch this vulnerability.
Please refer to this blog for more information about Java Deserialization vulnerabilities.
0daybank
文章评论