Can't find what you need?


• Ask the Community
• Create a Case
Reset Search
 

 

Article

Is EXOS and EOS products vulnerable to CVE-2010-0738?

« Go Back

Information

 
TitleIs EXOS and EOS products vulnerable to CVE-2010-0738?
Question

Is EXOS and EOS products vulnerable to CVE-2010-0738?

Environment
  • ExtremeXOS (all products)

  • D2, SSA and C5 series

Answer

Vulnerable:- EXOS and EOS products are not vulnerable.

Additional notes

The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.

For more information, please refer the link:- https://nvd.nist.gov/vuln/detail/CVE-2010-0738

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255