← back
CVE-2009-4843

CVE-2009-4843

EPSS 2.1%
ToutVirtual VirtualIQ Pro before 3.5 build 8691 does not require administrative authentication for JBoss console access, which allows remote attackers to execute arbitrary commands via requests to (1) the JMX Management Console or (2) the Web Console.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/37297http://www.securenetwork.it/ricerca/advisory/download/SN-2009-02.txthttp://www.securityfocus.com/archive/1/507729/100/0/threaded