Computer Security
[EN] securityvulns.ru no-pyccku


Java Dynamic Management Kit privilege escalation
Published:14.03.2007
Source:
SecurityVulns ID:7401
Type:local
Threat Level:
5/10
Description:Invalid appliance of restriction policies allows to access Inter-ORB applications data.
Affected:SUN : Java Dynamic Management Kit 5.1
CVE:CVE-2007-1419 (The Java Management Extensions Remote API Remote Method Invocation over Internet Inter-ORB Protocol (JMX RMI-IIOP) API in Java Dynamic Management Kit 5.1 before 20070309 does not properly enforce the java.policy, which allows local users to obtain certain MBeans data access by operating a server application accessed by a privileged remote authenticated user.)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod