zookeeper-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Samy Ateia <samyat...@hotmail.de>
Subject Is zookeeper affected by this vulnerability?
Date Tue, 15 Dec 2015 10:39:42 GMT
http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/

I' checked all my running servers for the commons collection package and zookeeper seems to
use it.

Is there any endpoint that deserializes objects and can be exploited by a man-in-the-middle
attack between two servers or a client and a server?

best regards,

Samy
 		 	   		  
Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message