8 matches found
SUSE CVE-2009-0039
Multiple cross-site request forgery CSRF vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to hijack the authentication of administrators for requests that 1 change the web administration password, 2 upload application...
SuSE 11 Security Update : Websphere Community Edition (SAT Patch Number 1016)
This update of WebSphere fixes the following vulnerabilities : - GERONIMO-3838: close potential denial of service attack - fix Apache Geronimo web administration console directory traversal vulnerabilities. CVE-2008-5518 - fix Apache Geronimo web administration console XSS vulnerabilities...
SLES10: Security update for Websphere Community Edition
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: websphere-asce More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText:...
SuSE 10 Security Update : Websphere Community Edition (ZYPP Patch Number 6312)
This update of WebSphere fixes the following vulnerabilities : - GERONIMO-3838: close potential denial of service attack - fix Apache Geronimo web administration console directory traversal vulnerabilities. CVE-2008-5518 - fix Apache Geronimo web administration console XSS vulnerabilities...
CVE-2009-0039
Multiple cross-site request forgery CSRF vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to hijack the authentication of administrators for requests that 1 change the web administration password, 2 upload application...
CVE-2009-0039
Apache Geronimo Application Server CSRF vulnerabilities (CVE-2009-0039) affect the web administration console in Geronimo 2.1–2.1.3. The issue allows remote attackers to hijack administrator sessions and perform actions (e.g., change password, upload apps, Shutdown) via forgery. The CVE descripti...
CVE-2009-0039
Multiple cross-site request forgery CSRF vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to hijack the authentication of administrators for requests that 1 change the web administration password, 2 upload application...
CVE-2009-0039
creationtimestamp| type| source ---|---|--- 2009-04-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32922...