Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5085

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5085
Last Modified 15 Nov 2008 01:59:38
Published 26 Sep 2007 06:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5085

Summary

Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows remote attackers to bypass authentication and obtain "access to Geronimo internals" via unspecified vectors.

Vulnerable Systems

Application

  • Apache Geronimo 2.0.1

  • Apache Geronimo 2.1


References

MISC - https://issues.apache.org/jira/browse/GERONIMO-3456

SECUNIA - 26906

OSVDB - 38661

CONFIRM - http://geronimo.apache.org/2007/09/07/mejb-security-alert.html

SECTRACK - 1018877

BID - 25804

CONFIRM - http://www-1.ibm.com/support/docview.wss?uid=swg21271586

SECUNIA - 27464


Last Updated: 27 May 2016 10:46:04