Description
It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.
Remediation
References
Related Vulnerabilities
WordPress Plugin RokIntroScroller Multiple Vulnerabilities (1.8)
Oracle JRE CVE-2014-2412 Vulnerability (CVE-2014-2412)
WordPress Plugin Admin renamer extended Cross-Site Scripting (3.2)
WordPress Plugin Simple Slideshow Manager Multiple Cross-Site Scripting Vulnerabilities (2.3)
WordPress Plugin Wordpress Countdown Widget Cross-Site Scripting (3.1.9.2)