BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Jboss vulnerability Feb 20 2007 04:30PM
Harry Hoffman (hhoffman ip-solutions net)
Hi,

Hopefully this will help some of those with mis-configured jboss
security. Although, IMHO, jboss should limit access out of the box :-(

This is due to improperly configured admin access to jboss.

The console and web mgmt are meant to be locked down but are not done so
by default.

The follow...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus