Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2010-1429 - Vulnerability Database
Jboss EAP

Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2010-1429

Medium
Reference: CVE-2010-1429
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-1429
Title: Jboss EAP Permissions Privileges and Access Controls Vulnerability
Overview:

Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 allows remote attackers to obtain sensitive information about quotdeployed web contextsquot via a request to the status servlet as demonstrated by a fulltrue query string. NOTE: this issue exists because of a CVE-2008-3273 regression.