The vulnerability of the McAfee Web Reporter Premium anti-virus software arises from insufficient restrictions on access to the invoker/EJBInvokerServlet and invoker/JMXInvokerServlet servers. This allows attackers to execute arbitrary Java code.

The vulnerability of the McAfee Web Reporter Premium antivirus software exists due to insufficient restrictions on access to the invoker/EJBInvokerServlet and invoker/JMXInvokerServlet servers. Exploiting this vulnerability allows a malicious actor to execute arbitrary Java code by sending...

wildfly: Some EJB transaction objects may get accumulated causing Denial of Service

A flaw was found in Wildfly's EJB Client, where the accumulation of specific EJB transaction objects over time can cause services to slow down and eventually become unavailable. This flaw allows an attacker to cause a denial of service. The highest threat from this vulnerability is to system...

OEJP Daemon Detection

The remote host is running an OEJP OpenEJB Enterprise Javabean Protocol daemon, a fast and lightweight EJB server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid26195; scriptversion"1.9";...

CVE-2004-0713

The remove method in a stateful Enterprise JavaBean EJB in BEA WebLogic Server and WebLogic Express version 8.1 through SP2, 7.0 through SP4, and 6.1 through SP6, does not properly check EJB permissions before unexporting a bean, which allows remote authenticated users to remove EJB objects from...