Bug 1382534 (CVE-2016-7065) - CVE-2016-7065 JBoss EAP 5 JMX servlet deserializes Java objects sent via HTTP
Summary: CVE-2016-7065 JBoss EAP 5 JMX servlet deserializes Java objects sent via HTTP
Status: CLOSED WONTFIX
Alias: CVE-2016-7065
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard: impact=moderate,public=20161007,repor...
Keywords: Security
Depends On:
Blocks: 1382398
TreeView+ depends on / blocked
 
Reported: 2016-10-07 00:42 UTC by Jason Shepherd
Modified: 2019-06-08 21:29 UTC (History)
19 users (show)

(edit)
Clone Of:
(edit)
Last Closed: 2019-06-08 02:59:46 UTC


Attachments (Terms of Use)

Description Jason Shepherd 2016-10-07 00:42:14 UTC
JBoss EAP 4 and 5 JMX servlet is exposed on port 8080/TCP with authentication by default. The communication employs serialized Java objects, encapsulated in HTTP requests and responses.

The server deserializes these objects. This behavior can be exploited to cause a denial of service and potentially execute arbitrary code.

Comment 1 Jason Shepherd 2016-10-07 00:42:34 UTC
Acknowledgments:

Name: Federico Dotta (Mediaservice.net), Maurizio Agazzini (Mediaservice.net)


Note You need to log in before you can comment on or make changes to this bug.