CVE-2011-4605

NONECVSS 0.0

0.0

The (1) JNDI service, (2) HA-JNDI service, and (3) HAJNDIFactory invoker servlet in JBoss Enterprise Application Platform 4.3.0 CP10 and 5.1.2, Web Platform 5.1.2, SOA Platform 4.2.0.CP05 and 4.3.0.CP05, Portal Platform 4.3 CP07 and 5.2.x before 5.2.2, and BRMS Platform before 5.3.0 do not properly restrict write access, which allows remote attackers to add, delete, or modify items in a JNDI tree via unspecified vectors.

🔗 References (36)

secalert@redhathttp://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=766469
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1022.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1023.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1024.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1025.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1026.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1027.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1028.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1109.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1125.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1232.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1295.html
secalert@redhathttp://secunia.com/advisories/49656
secalert@redhathttp://secunia.com/advisories/49658
secalert@redhathttp://secunia.com/advisories/50084

Is Your Infrastructure Affected by CVE-2011-4605?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2011-4605

📅 Published

🔄 Last Modified

🔗 References (36)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2011-4605?