Alessio Soldano [https://community.jboss.org/people/asoldano] created the discussion "Re: Was CVE-2011-1483 fixed in JBoss AS 6?" To view the discussion, visit: https://community.jboss.org/message/726516#726516 -------------------------------------------------------------- The JBossWS-CXF stack was not affected by this, so any vanilla AS 6 M4 or greater is fine (unless you manually installed jbossws-native). In the jbossws-native stack, this has been fixed in 4.0.0.Beta1. -------------------------------------------------------------- Reply to this message by going to Community [https://community.jboss.org/message/726516#726516] Start a new discussion in JBoss Web Services at Community [https://community.jboss.org/choose-container!input.jspa?contentType=1&...]