{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "shared/util/StateUtils.java in Apache MyFaces 1.1.x before 1.1.8, 1.2.x before 1.2.9, and 2.0.x before 2.0.1 uses an encrypted View State without a Message Authentication Code (MAC), which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2010-10-20T17:00:00Z"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=623799"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://issues.apache.org/jira/browse/MYFACES-2749"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://svn.apache.org/viewvc/myfaces/shared/trunk/core/src/main/java/org/apache/myfaces/shared/util/StateUtils.java?r1=943327&r2=951801"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T02:17:14.378Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=623799"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://issues.apache.org/jira/browse/MYFACES-2749"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://svn.apache.org/viewvc/myfaces/shared/trunk/core/src/main/java/org/apache/myfaces/shared/util/StateUtils.java?r1=943327&r2=951801"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2010-2057", "state": "PUBLISHED", "dateReserved": "2010-05-25T00:00:00Z", "datePublished": "2010-10-20T17:00:00Z", "dateUpdated": "2024-08-07T02:17:14.378Z"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:myfaces:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "1201479B-D49A-4AE4-906B-497BBCF49DAE", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "9B4A602F-605E-44AB-A94C-FACA6644AEBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "F1BC7980-C49E-494D-B7D4-6CA306628900", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "F686D80E-F592-4994-8648-61CE53D04CBC", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "3F201327-7EE2-4B1D-A5A2-C789AC8F7D80", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "B6C2699C-53E5-4523-9523-862E2F25682B", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "67356C59-5DAD-496F-B199-58FD06358963", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.1.7:*:*:*:*:*:*:*", "matchCriteriaId": "D102CD0D-2BA8-4915-85BF-715AD9D2EA90", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:myfaces:1.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "672F3559-6044-44DA-8021-45736B2668DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "32E8219C-962D-4513-A463-E31D1D427C89", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "E2334B48-D635-487A-965C-400ED18E8896", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "4AC17DE4-F933-45D0-A202-62871C9F0B39", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "2A58DD4C-C8AD-4352-8AC5-85BDB291D4AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "C83E7CC2-64E7-45E7-8EEB-8448F59D7724", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:myfaces:1.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "606B8964-297B-4D44-A603-9759B51151A0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:myfaces:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "CB2DA584-D6C3-42EC-9015-B76D4CA60CE9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "shared/util/StateUtils.java in Apache MyFaces 1.1.x before 1.1.8, 1.2.x before 1.2.9, and 2.0.x before 2.0.1 uses an encrypted View State without a Message Authentication Code (MAC), which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack."}, {"lang": "es", "value": "shared/util/StateUtils.java en Apache MyFaces v1.1.x anterior a v1.1.8, v1.2.x anterior a v1.2.9, y v2.0.x anterior a v2.0.1 utiliza un cifrado View State sin un Codigo de Autenticaci\u00f3n de Mensaje (MAC), lo que cual facilita a los atacantes remotos realizar modificaciones con \u00e9xito de el View State mediante un ataque de relleno."}], "id": "CVE-2010-2057", "lastModified": "2024-11-21T01:15:48.740", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2010-10-20T18:00:02.503", "references": [{"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://svn.apache.org/viewvc/myfaces/shared/trunk/core/src/main/java/org/apache/myfaces/shared/util/StateUtils.java?r1=943327&r2=951801"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=623799"}, {"source": "secalert@redhat.com", "url": "https://issues.apache.org/jira/browse/MYFACES-2749"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://svn.apache.org/viewvc/myfaces/shared/trunk/core/src/main/java/org/apache/myfaces/shared/util/StateUtils.java?r1=943327&r2=951801"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=623799"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://issues.apache.org/jira/browse/MYFACES-2749"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "MyFaces: encrypted view state does not include MAC", "id": "623799", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=623799"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "draft"}, "details": ["shared/util/StateUtils.java in Apache MyFaces 1.1.x before 1.1.8, 1.2.x before 1.2.9, and 2.0.x before 2.0.1 uses an encrypted View State without a Message Authentication Code (MAC), which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack."], "name": "CVE-2010-2057", "package_state": [{"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "fix_state": "Affected", "package_name": "Other", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 4 AS"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "fix_state": "Affected", "package_name": "httpd", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server"}], "public_date": "2010-06-10T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2010-2057\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-2057"], "statement": "Not vulnerable. This issue did not affect the versions of myfaces as shipped with JBoss Enterprise Web Server.", "threat_severity": "Moderate"}