Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2014-0093 - Vulnerability Database
Jboss EAP

Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2014-0093

Medium
Reference: CVE-2014-0093
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-0093
Title: Jboss EAP Permissions Privileges and Access Controls Vulnerability
Overview:

Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2 when using a Java Security Manager (JSM) does not properly apply permissions defined by a policy file which causes applications to be granted the java.security.AllPermission permission and allows remote attackers to bypass intended access restrictions.