JBoss Enterprise Application Platform Multiple Vulnerabilities Network Vulnerability

Summary

JBoss Enterprise Application Platform is prone to multiple vulnerabilities, including an information-disclosure issue and multiple authentication-bypass issues. An attacker can exploit these issues to bypass certain security restrictions to obtain sensitive information or gain unauthorized access to the application.

Solution

Updates are available. Please see the references for details.

References

http://www.jboss.org
http://www.securityfocus.com/bid/39710

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0738, CVE-2010-1428, CVE-2010-1429

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Acritum Femitter Server 1.03 Multiple Remote Vulnerabilities
GoAhead WebServer 'name' and 'address' Cross-Site Scripting Vulnerabilities
Apache Tomcat 'Transfer-Encoding' Information Disclosure and Denial Of Service Vulnerabilities
IBM WebSphere Application Server (WAS) Security Bypass Vulnerability - March 2011
Apache HTTP Server Scoreboard Security Bypass Vulnerability (Windows)

Take action and discover your vulnerabilities