CVE-2010-3878

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 15-06-2010 02:00

Last modified: - 15-06-2010 02:00

Total changes: - 8

Description

CVE-2010-3878 JBoss EAP jmx console FileDeployment CSRF

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:S/C:N/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

None

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

4.0

Base score

Exploitability score

Impact score

Verification logic

OR

AND

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3

AND

product=glassfish-jaxb-0 AND versionEndExcluding=2.1.4-1.17.patch04.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=glassfish-jaxws-0 AND versionEndExcluding=2.1.1-1jpp.ep1.13.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=hibernate3-1 AND versionEndExcluding=3.2.4-1.SP1_CP11.0jpp.ep2.0.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=hibernate3-annotations-0 AND versionEndExcluding=3.3.1-2.0.GA_CP04.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=javassist-0 AND versionEndExcluding=3.9.0-2.ep1.1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossas-0 AND versionEndExcluding=4.3.0-8.GA_CP09.2.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-common-0 AND versionEndExcluding=1.2.2-1.ep1.1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-messaging-0 AND versionEndExcluding=1.4.0-4.SP3_CP11.1.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-remoting-0 AND versionEndExcluding=2.2.3-4.SP3.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-seam-0 AND versionEndExcluding=1.2.1-3.JBPAPP_4_3_0_GA.ep1.22.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-seam2-0 AND versionEndExcluding=2.0.2.FP-1.ep1.26.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossts-1 AND versionEndExcluding=4.2.3-2.SP5_CP10.1jpp.ep1.1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossweb-0 AND versionEndExcluding=2.0.0-7.CP15.0jpp.ep1.1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossws-0 AND versionEndExcluding=2.0.1-6.SP2_CP09.2.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossws-common-0 AND versionEndExcluding=1.0.0-3.GA_CP06.1.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jgroups-1 AND versionEndExcluding=2.4.9-1.ep1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=rh-eap-docs-0 AND versionEndExcluding=4.3.0-8.GA_CP09.ep1.3.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=xalan-j2-0 AND versionEndExcluding=2.7.1-4.ep1.1.el4

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=glassfish-jaxb-0 AND versionEndExcluding=2.1.4-1.17.patch04.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=glassfish-jaxws-0 AND versionEndExcluding=2.1.1-1jpp.ep1.13.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=hibernate3-1 AND versionEndExcluding=3.2.4-1.SP1_CP11.0jpp.ep2.0.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=hibernate3-annotations-0 AND versionEndExcluding=3.3.1-2.0.GA_CP04.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=javassist-0 AND versionEndExcluding=3.9.0-2.ep1.1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossas-0 AND versionEndExcluding=4.3.0-8.GA_CP09.2.1.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-common-0 AND versionEndExcluding=1.2.2-1.ep1.1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-messaging-0 AND versionEndExcluding=1.4.0-4.SP3_CP11.1.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-remoting-0 AND versionEndExcluding=2.2.3-4.SP3.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-seam-0 AND versionEndExcluding=1.2.1-3.JBPAPP_4_3_0_GA.ep1.22.el5.1

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jboss-seam2-0 AND versionEndExcluding=2.0.2.FP-1.ep1.26.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossts-1 AND versionEndExcluding=4.2.3-2.SP5_CP10.1jpp.ep1.1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossweb-0 AND versionEndExcluding=2.0.0-7.CP15.0jpp.ep1.1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossws-0 AND versionEndExcluding=2.0.1-6.SP2_CP09.2.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jbossws-common-0 AND versionEndExcluding=1.0.0-3.GA_CP06.1.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=jgroups-1 AND versionEndExcluding=2.4.9-1.ep1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=quartz-0 AND versionEndExcluding=1.5.2-1jpp.patch01.ep1.4.2.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=rh-eap-docs-0 AND versionEndExcluding=4.3.0-8.GA_CP09.ep1.3.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

AND

product=xalan-j2-0 AND versionEndExcluding=2.7.1-4.ep1.1.el5

vendor=Red Hat Enterprise Linux AND product=jboss_enterprise_application_platform AND version=4.3.0

Reference

Keywords

REDHAT

CVE-2010-3878

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.