Summary
The host is running GlassFish Server and is prone to privilege escalation vulnerability.
Impact
Successful exploitation could allow local attackers to affect confidentiality and integrity via unknown vectors.
Impact Level: System/Application
Solution
Apply the security updates.
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
*****
NOTE: Ignore this warning if above mentioned patch is already applied.
*****
Insight
The issue is caused by an unspecified error related to the Java Message Service, which could allow local attackers to disclose or manipulate certain information, or create a denial of service condition.
Affected
Oracle GlassFish version 2.1, 2.1.1 and 3.0.1
References
Severity
Classification
-
CVE CVE-2010-4438 -
CVSS Base Score: 5.7
AV:L/AC:L/Au:S/C:P/I:P/A:C
Related Vulnerabilities