Cross-site request forgery (CSRF) vulnerability in jmx-console/HtmlAdaptor in JBoss allows remote attackers to perform privileged actions as administrators via certain MBean operations, a different vulnerability than CVE-2006-3733.
CVE ID | Name | Status | References |
---|---|---|---|
CVE-2007-1157 | Cross-site request forgery (CSRF) vulnerability in jmx-console/HtmlAdaptor in JBoss allows remote attackers to perform privileged actions as administrators via certain MBean operations, a different vulnerability than CVE-2006-3733. |
Assigned (20070227) | BUGTRAQ:20070222 JBoss jmx-console CSRF | URL:http://www.securityfocus.com/archive/1/460934/100/0/threaded | BUGTRAQ:20070223 Re: JBoss jmx-console CSRF | URL:http://www.securityfocus.com/archive/1/461004/100/0/threaded | OSVDB:33142 | URL:http://osvdb.org/33142 | XF:jboss-jmxconsole-csrf(32673) | URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/32673 |
Page created: