CVE-2012-2683

Name of the Vulnerable Software and Affected Versions Cumin versions prior to 0.1.5444 Red Hat Enterprise Messaging, Realtime, and Grid (MRG) version 2.0

Description The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to error message displays or in source HTML on certain pages.

Recommendations For Cumin versions prior to 0.1.5444, update to version 0.1.5444 or later. For Red Hat Enterprise Messaging, Realtime, and Grid (MRG) version 2.0, consider disabling error message displays and restricting access to certain pages until a patch is available.