Major flaw in Java-based Spring Framework allows remote-code execution by attackers

Home › Major flaw in Java-based Spring Framework allows remote-code execution by attackers

2013-01-17 20:16:15| InfoWorld: Top News

There's a major flaw in the Java-based Spring Framework open-source development code that allows remote-code execution by attackers against applications built with it, according to the security firm Aspect Security, which identified the flaw. "It allows attackers to inject code," says Jeff Williams, CEO at Aspect Security. The weakness is in what's called the "expression language" function in the Spring Framework development code.

Tags: major spring framework execution

Category:Information Technology

Latest from this category

All news

21.05	Estée Lauder Companies Presents Research at the Society for Investigative Dermatology Annual ...
21.05	Dove Launches Whole Body Deodorants for 72-Hour Odor Protection
21.05	Drowsy Sleep Co Launches Eyelash Protecting Mask
21.05	Growth Opportunities in Upcycled Ingredients Anticipated Through 2032
21.05	Superior Environmental Solutions Acquires Arrowhead Environmental Services
21.05	Kinderhook Partners with Apex Waste Solutions and Acquires Materials Management Company and All American Disposal
21.05	Liebherr Appoints Hobgood as New GM of Corporate Responsibility and Sustainability
21.05	Tennessee Recycling Center Closing Due to Continued Dumping of Un-Recyclable Materials
More »

je.st

news

Categories:

Popular Tags: