Arbitrary Java Code Execution Vulnerability in Tibbo AggreGate Server Service

Arbitrary Java Code Execution Vulnerability in Tibbo AggreGate Server Service

CVE-2015-7912 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document.

Learn more about our Cis Benchmark Audit For Server Software.