3 matches found
Privilege Escalation
An attack technique against the W3C XML Encryption Standard when block ciphers were used in CBC mode could allow a remote attacker to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram. CVE-2011-1096 JBoss Web Services leaked side-channe...
Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update
JBoss Enterprise Application Platform 5.2.0, which fixes multiple security issues, various bugs, and adds several enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability...
CVE-2009-5066
CVE-2009-5066 affects JBoss AS 5.0, EAP 5.0 and earlier. The vulnerability arises because the script twiddle.sh accepts credentials as command-line arguments, enabling a local attacker to read the credentials by inspecting the process arguments. The impact is credential disclosure to local users....