← back
CVE-2006-3733

CVE-2006-3733

EPSS 11.8%
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/28245unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0424.htmlhttp://secunia.com/advisories/21118http://securitytracker.com/id?1016537https://exchange.xforce.ibmcloud.com/vulnerabilities/27811http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtmlhttp://www.osvdb.org/27419http://www.securityfocus.com/archive/1/440641/100/100/threadedhttp://www.securityfocus.com/bid/19071http://www.securityfocus.com/bid/19075http://www.vupen.com/english/advisories/2006/2887