JBoss Enterprise Application Platform Multiple Vulnerabilities Network Vulnerability

Summary

JBoss Enterprise Application Platform is prone to multiple vulnerabilities, including an information-disclosure issue and multiple authentication-bypass issues. An attacker can exploit these issues to bypass certain security restrictions to obtain sensitive information or gain unauthorized access to the application.

Solution

Updates are available. Please see the references for details.

References

http://www.jboss.org
http://www.securityfocus.com/bid/39710

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0738, CVE-2010-1428, CVE-2010-1429

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

IBM WebSphere Application Server IVT Cross Site Scripting Vulnerability
IBM WebSphere Application Server WS-Security XML Encryption Weakness Vulnerability
Apache Directory Listing
IIS 5.0 Sample App reveals physical path of web root
IBM WebSphere Application Server (WAS) Security Bypass Vulnerability - March 2011

Take action and discover your vulnerabilities