5 matches found
RHEL 5 : JBoss Enterprise Application Platform 4.3.0.CP09 update (Important) (RHSA-2010:0938)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0938 advisory. JBoss Enterprise Application Platform is the market leading platform for innovative and scalable Java applications; integrating the JBoss...
RHEL 4 : JBoss EAP (RHSA-2010:0937)
Updated JBoss Enterprise Application Platform JBEAP 4.3 packages that fix three security issues and multiple bugs are now available for Red Hat Enterprise Linux 4 as JBEAP 4.3.0.CP09. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerabilit...
CVE-2010-3878
Cross-site request forgery CSRF vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3 before 4.3.0.CP09 allows remote attackers to hijack the authentication of administrators for requests that deploy WAR files...
CVE-2010-3878
CVE-2010-3878 is a CSRF vulnerability in the JMX Console of Red Hat JBoss EAP/JBEAP 4.3.x, exploitable when an admin is tricked into visiting a crafted page to deploy a WAR. The issue affects JMX Console functionality and allows remote attackers to hijack administrator authentication for deployme...
Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 4.3.0.CP09 update
Updated JBoss Enterprise Application Platform JBEAP 4.3 packages that fix three security issues and multiple bugs are now available for Red Hat Enterprise Linux 5 as JBEAP 4.3.0.CP09. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerabilit...