CVE-2012-4550 in Red Hat JBoss Enterprise Application Platforminformación

Resumen (Inglés)

JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) before 6.0.1, when using role-based authorization for Enterprise Java Beans (EJB) access, does not call the intended authorization modules, which prevents JACC permissions from being applied and allows remote attackers to obtain access to the EJB.

Reservar

2008-01-24

Divulgación

2013-01-04

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
7187	Red Hat JBoss Enterprise Application Platform mod_negotiation processInvocation escalada de privilegios	264	Prueba de concepto	Arreglo oficial	CVE-2012-4550

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you know our Splunk app?

Download it now for free!