Host site information available in error messages
search cancel

Host site information available in error messages

book

Article ID: 136564

calendar_today

Updated On:

Products

Endevor Endevor Natural Integration Endevor - ECLIPSE Plugin Endevor - Enterprise Workbench

Issue/Introduction

The following issue was raised following a penetration test - Description The Web Services Definition Language (WSDL) file was accessible and other messages returned information that could possibly be used to penetrate a system. This is happening under Eclipse plugin with element actions.  

Environment

Release : 18.0 

Component : ENDEVOR ECLIPSE PLUGIN 

Cause

Eclipse plugin element actions are using SOAP requests

Resolution

Element SOAP requests were modified to use RESTful client for the Eclipse plugin. apply PTF  #SO09627 
Powered by Wolken Software