Info

Disclosure

Oct 11, 2011

Discovery

Unknown

Dates

Exploit

Oct 11, 2011

Solution

Unknown

Description

JBoss Application Server contains a flaw related to daytona_bsh.pl that may allow a remote attacker to bypass authentication. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure
OSVDB: Web Related

Solution

OSVDB is not aware of a solution for this vulnerability.

Products

Red Hat, Inc.

JBoss Application Server

6.1.0.Final

References

Exploit Database: 17977
Related OSVDB ID: 85439
Mail List Post: http://seclists.org/fulldisclosure/2011/Oct/417
Vendor URL: http://www.jboss.org/jbossas/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/85440