| |||||||||||||
| Test ID: | 1.3.6.1.4.1.25623.1.0.902286 |
| Category: | General |
| Title: | Oracle Sun Java GlassFish Server Privilege Escalation Vulnerability |
| Summary: | Check for the version of Oracle Sun Java GlassFish Server |
| Description: | Overview: The host is running GlassFish Server and is prone to privilege escalation vulnerability. Vulnerability Insight: The issue is caused by an unspecified error related to the Java Message Service, which could allow local attackers to disclose or manipulate certain information, or create a denial of service condition. Impact: Successful exploitation could allow local attackers to affect confidentiality and integrity via unknown vectors. Impact Level: System/Application Affected Software/OS: Oracle GlassFish version 2.1, 2.1.1 and 3.0.1 Fix: Apply the security updates. http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html ***** NOTE: Ignore this warning if above mentioned patch is already applied. ***** References: http://osvdb.org/70572 http://secunia.com/advisories/42988 http://xforce.iss.net/xforce/xfdb/64813 http://www.vupen.com/english/advisories/2011/0155 |
| Cross-Ref: |
BugTraq ID: 45890 Common Vulnerability Exposure (CVE) ID: CVE-2010-4438 http://www.securityfocus.com/bid/45890 http://osvdb.org/70572 http://osvdb.org/70573 http://secunia.com/advisories/42988 http://www.vupen.com/english/advisories/2011/0155 XForce ISS Database: glassfish-jms-privilege-escalation(64813) http://xforce.iss.net/xforce/xfdb/64813 |
| Copyright | Copyright (C) 2011 SecPod |
| This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2013 E-Soft Inc. All rights reserved.