Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/08/2010 Updated: 10/08/2010

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N

JBoss Enterprise Service Bus (ESB) prior to 4.7 CP02 in JBoss Enterprise SOA Platform prior to 5.0.2 does not properly consider the security domain with which a service is secured, which might allow remote malicious users to gain privileges by executing a service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat jboss_enterprise_service_bus
redhat jboss_enterprise_service_bus 4.6
redhat jboss_enterprise_service_bus 4.5
redhat jboss_enterprise_service_bus 4.0
redhat jboss_enterprise_service_bus 4.4
redhat jboss_enterprise_service_bus 4.2.1
redhat jboss_enterprise_service_bus 4.3
redhat jboss_enterprise_service_bus 4.2
redhat jboss_enterprise_soa_platform 4.3.0
redhat jboss_enterprise_soa_platform 4.2.0
redhat jboss_enterprise_soa_platform 5.0.1
redhat jboss_enterprise_soa_platform 5.0.0

CWE-20 https://bugzilla.redhat.com/show_bug.cgi?id=609442 https://jira.jboss.org/browse/JBESB-3345 http://secunia.com/advisories/40681 http://www.redhat.com/docs/en-US/JBoss_SOA_Platform/5.0.2/html/5.0.2_Release_Notes/index.html http://secunia.com/advisories/40568 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-2474

Vulnerability Summary

References

Vulmon Search

About

Products

Connect