Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0005

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2014-0005
Last Modified 27 Mar 2015 09:59:08
Published 20 Feb 2015 11:59:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2014-0005

Summary

PicketBox and JBossSX, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2 and JBoss BRMS before 6.0.3 roll up patch 2, allows remote authenticated users to read and modify the application sever configuration and state by deploying a crafted application.

Vulnerable Systems

Application

  • Redhat Jboss Enterprise Application Platform 6.2.2

  • Redhat Jboss Enterprise Brms Platform 6.0.3


References

REDHAT - RHSA-2015:0235

REDHAT - RHSA-2015:0234

REDHAT - RHSA-2014:0345

REDHAT - RHSA-2014:0344

REDHAT - RHSA-2014:0343

REDHAT - RHSA-2015:0720


Last Updated: 27 May 2016 11:08:13