Oracle Sun GlassFish Enterprise Server and Java System Application Server contain a flaw related to the Administration sub-component. The issue is triggered when a remote attacker sends a crafted GET request via TCP port 4848 to the administrative interface. This may allow an attacker to bypass authentication and execute arbitrary code.

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section.

• CVE ID: 2011-0807 (see also: NVD)
• Secunia Advisory ID: 44300
• Bugtraq ID: 47438
• Metasploit ID: 71948
• Mail List Post: http://seclists.org/fulldisclosure/2011/Apr/315
• News Article: http://www.computerworld.com/s/article/9215838/Oracle_to_fix_73_security_bugs_next_week
• Vendor Specific Solution URL: http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html#AppendixSUNS
• Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-11-137/

• Jason Bowes - Zero Day Initiative (ZDI)