CVE-2012-2966 Information

Description

Caucho Quercus as distributed in Resin before 4.0.29 overwrites entries in the SERVER superglobal array on the basis of POST parameters which has unspecified impact and remote attack vectors.

Reference

http://caucho.com/resin-4.0/changes/changes.xtp http://en.securitylab.ru/lab/ http://en.securitylab.ru/lab/PT-2012-05 http://www.kb.cert.org/vuls/id/309979