CVE-2010-4438

Name of the Vulnerable Software and Affected Versions Oracle GlassFish versions 2.1 through 3.0.1 Java System Message Queue version 4.1

Description The issue affects confidentiality, integrity, and availability, and is related to Java Message Service (JMS), allowing local users to exploit it.

Recommendations For Oracle GlassFish versions 2.1 through 3.0.1, consider restricting access to Java Message Service (JMS) until a fix is available. For Java System Message Queue version 4.1, avoid using the JMS functionality in sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.