CVE-2012-2656

Name of the Vulnerable Software and Affected Versions Restlet version 1.1.10

Description An XML eXternal Entity (XXE) issue exists in an endpoint using XML transport, which lets a remote attacker obtain sensitive information.

Recommendations For Restlet version 1.1.10, consider disabling the XML transport endpoint temporarily as a mitigation measure until a patch is available. Restrict access to the endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.