1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 3

Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 3

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a vulnerability in JBoss which could result in remote code execution.

Additional Information

The default configuration of JBoss does not restrict access to the console and web management interfaces. This allows remote attackers to bypass authentication and gain administrative access via direct requests.

Affected

  • JBoss 4.x and 5.x
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube