Vulnerabilities > CVE-2012-2967 - Unspecified vulnerability in Caucho Resin
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Caucho Quercus, as distributed in Resin before 4.0.29, does not properly implement the == (equals sign equals sign) operator for comparisons, which has unspecified impact and context-dependent attack vectors.
Vulnerable Configurations
References
- http://caucho.com/resin-4.0/changes/changes.xtp
- http://caucho.com/resin-4.0/changes/changes.xtp
- http://en.securitylab.ru/lab/
- http://en.securitylab.ru/lab/
- http://en.securitylab.ru/lab/PT-2012-05
- http://en.securitylab.ru/lab/PT-2012-05
- http://www.kb.cert.org/vuls/id/309979
- http://www.kb.cert.org/vuls/id/309979