CS-MARS JBoss jmx-console access

Added: 07/26/2006
CVE: CVE-2006-3733
BID: 19075
OSVDB: 27419

Background

The Cisco Security Monitoring, Analysis, and Response System (CS-MARS) recognizes and correlates network attacks.

Problem

CS-MARS includes the JBoss web application server with insufficient access control to the **jmx-console** component. This component can be used by a remote attacker to execute arbitrary commands.

Resolution

Upgrade to CS-MARS 4.2.1 or higher or apply the upgrade referenced in Cisco Security Advisory cisco-sa-20060719-mars.

References

<http://www.securityfocus.com/archive/1/440641&gt;

Platforms

cs-mars