Описание
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line arguments, to the twiddle.log file, which allows local users to obtain sensitive information by reading this file.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 4.2.3.GA-1ubuntu1 |
| gutsy | DNE | |
| hardy | not-affected | 4.2.2.GA-1 |
| intrepid | not-affected | 4.2.2.GA-5ubuntu2 |
| jaunty | not-affected | 4.2.3.GA-1 |
| karmic | not-affected | 4.2.3.GA-1 |
| upstream | released | 4.2.0.CP08, 4.3.0.CP07 |
Показывать по
Ссылки на источники
2.1 Low
CVSS2
Связанные уязвимости
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line arguments, to the twiddle.log file, which allows local users to obtain sensitive information by reading this file.
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line arguments, to the twiddle.log file, which allows local users to obtain sensitive information by reading this file.
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EA ...
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line arguments, to the twiddle.log file, which allows local users to obtain sensitive information by reading this file.
2.1 Low
CVSS2