6 matches found
JBoss Java Class DeploymentFileRepository Directory Traversal
$Id: jbossdeploymentfilerepository.rb 9246 2010-05-07 22:28:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
openSUSE 10 Security Update : jboss4 (jboss4-2304)
This update fixes a problem in the JBOSS server where it was possible to potentially execute code if the console manager was enabled. CVE-2006-5750 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...
openSUSE 10 Security Update : jboss (jboss-2309)
This update fixes a problem in the JBOSS server where it was possible to potentially execute code if the console manager was enabled. CVE-2006-5750 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...
SYMSA-2006-011: JBoss Java Class DeploymentFileRepository Directory Traversal
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Vulnerability Research http://www.symantec.com/research Security Advisory Advisory ID: SYMSA-2006-011 Advisory Title: JBoss Java Class DeploymentFileRepository Directory Traversal Author: Oliver Karow / [email protected] Release Date:...
CVE-2006-5750
Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server jbossas 3.2.4 through 4.0.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager...
CVE-2006-5750
CVE-2006-5750 affects JBoss Application Server (jbossas) versions 3.2.4 through 4.0.5, where the DeploymentFileRepository class (used by the web console/JMX console) can be abused to read or modify arbitrary files and potentially execute code. The root cause is a directory traversal flaw in the D...