JBoss Operations Network Lets Remote Users Hijack Approved Agents
|
|
SecurityTracker Alert ID: 1026628 |
|
SecurityTracker URL: http://securitytracker.com/id/1026628
|
|
CVE Reference:
CVE-2012-0052, CVE-2012-0062
(Links to External Site)
|
Date: Feb 2 2012
|
Impact:
Disclosure of system information, Disclosure of user information, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in JBoss Operations Network. A remote user can hijack an approved agent's session.
The system does not properly verify security tokens [CVE-2012-0052]. A remote agent can spoof the identity of an approved agent and hijack the approved agent's session and steal the target agent's security token. The remote user can obtain potentially sensitive data from the target server, including JMX credentials.
A remote user can register without supplying a security token and spoof the identity of an approved agent [CVE-2012-0062]. The remote user can obtain potentially sensitive data from the target server, including JMX credentials.
|
Impact:
A remote user can hijack an approved agent's session.
|
Solution:
The vendor has issued a fix.
The vendor's advisory is available at:
https://rhn.redhat.com/errata/RHSA-2012-0089.html
|
Cause:
Access control error, Authentication error
|
Underlying OS:
Linux (Red Hat Enterprise)
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
