Oracle GlassFish Server 2.1.1 < 2.1.1 Patch15 Administration Component Unspecified Vulnerability

This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.


Synopsis :

The remote web server is affected by an unspecified vulnerability that
affects confidentiality.

Description :

The version of GlassFish Server running on the remote host is affected
by an unspecified vulnerability related to the Administration
component that allows local users to affect confidentiality in some
way.

See also :

http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
http://www.nessus.org/u?55ab74fa

Solution :

Upgrade to GlassFish Server 2.1.1 Patch15 or later.

Risk factor :

Low / CVSS Base Score : 2.1
(CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N)
CVSS Temporal Score : 1.6
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Web Servers

Nessus Plugin ID: 57803 ()

Bugtraq ID: 51497

CVE ID: CVE-2011-3564

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial