APP: RedHat JBoss JNDI Authentication Bypass
This signature detects attempts to exploit a known flaw in Red Hat JBoss. A successful attack can lead to unauthorized information disclosure.
Extended Description
JBoss Enterprise Application Platform is prone to a security-bypass vulnerability. Successful exploits may allow attackers to bypass certain security restrictions and perform unauthorized actions. JBoss Enterprise Portal Platform 4.3 CP07 is vulnerable; other versions may also be affected.
Affected Products
Jboss_group jboss_enterprise_soa_platform
Short Name
APP:MISC:REDHAT-JBOSS-JNDI
Severity
Major
Recommended
False
Recommended Action
None
Category
APP
Keywords
Authentication Bypass CVE-2011-4605 JBoss JNDI RedHat bid:54644
Release Date
01/09/2013
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3604
False Positive
Unknown
Vendors
Red_hat
Jboss_group
CVSS Score
7.5