I see that the Apache Commons HTTP Client is distributed with Axis2 1.6.2 Commons HTTP Client has been EOL for several years now (see http://hc.apache.org/httpclient-3.x/) as it migrated to the Apache HttpCore and HttpClient projects. In addition, there is one known vulnerability in HTTP Client 3.1 (see http://cvedetails.com/cve-details.php?t=1&cve_id=CVE-2012-5783) that was never fixed because the project was EOL.
Given these issues, has any consideration been given to moving to the supported HttpClient project? Thanks, David --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
