PT-2012-4102 · Red Hat+1 · Jboss Application Server+1

David Elze

Published

2012-05-21

Updated

2013-05-25

CVE-2012-2561

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HP Business Service Management (BSM) version 9.12

Description The issue allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component. This is achieved by uploading crafted .war files due to improper restrictions. The attack can be performed via a crafted request to TCP port 1098, 1099, or 4444.

Recommendations For HP Business Service Management (BSM) version 9.12, restrict the uploading of .war files to prevent remote attackers from executing arbitrary JSP code. As a temporary workaround, consider restricting access to TCP ports 1098, 1099, and 4444 to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2012-2561

Affected Products

Hp Business Service Management

Jboss Application Server

PT-2012-4102 · Red Hat+1 · Jboss Application Server+1

CVE-2012-2561

Weakness Enumeration

Related Identifiers

Affected Products

References · 7