Can't find what you need?


• Ask the Community
• Create a Case
Reset Search
 

 

Article

Are EXOS and EOS products vulnerable to CVE-2010-1428?

« Go Back

Information

 
TitleAre EXOS and EOS products vulnerable to CVE-2010-1428?
Question
Are EXOS and EOS products vulnerable to CVE-2010-1428?
Environment
  • ExtremeXOS (all products)

  • D2, SSA and C5 series
Answer

EXOS and EOS products are not vulnerable.

Additional notes

The MITRE CVE dictionary describes this issue as:
The Web Console (aka web-console) in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to obtain sensitive information via an unspecified request that uses a different method.

For more information, please refer the link:- https://access.redhat.com/security/cve/cve-2010-1428

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255