Java Dynamic Management Kit privilege escalation
Published:		14.03.2007
Source:		CVE
SecurityVulns ID:		7401
Type:		local
Level:		5/10
Description:		Invalid appliance of restriction policies allows to access Inter-ORB applications data.

Affected:		SUN : Java Dynamic Management Kit 5.1
CVE:		CVE-2007-1419 (The Java Management Extensions Remote API Remote Method Invocation over Internet Inter-ORB Protocol (JMX RMI-IIOP) API in Java Dynamic Management Kit 5.1 before 20070309 does not properly enforce the java.policy, which allows local users to obtain certain MBeans data access by operating a server application accessed by a privileged remote authenticated user.)

Discuss:

Read or add your comments to this news (0 comments)