The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3458 advisory.

  - Apache ActiveMQ Artemis: Deserialization of untrusted input vulnerability (CVE-2016-4978)

  - eap: HTTP header injection / response splitting (CVE-2016-4993)

  - EAP7 Privilege escalation when managing domain including earlier version slaves (CVE-2016-5406)

  - EAP7: Internal IP address disclosed on redirect when request header Host field is not set (CVE-2016-6311)

  - undertow: Long URL proxy request lead to java.nio.BufferOverflowException and DoS (CVE-2016-7046)

  - EAP: Sensitive data can be exposed at the server level in domain mode (CVE-2016-7061)

  - admin-cli: Potential EAP resource starvation DOS attack via GET requests for server log files     (CVE-2016-8627)

  - jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation     (CVE-2016-8656)

  - wildfly: ParseState headerValuesCache can be exploited to fill heap with garbage (CVE-2016-9589)

  - wildfly: Arbitrary file read via path traversal (CVE-2017-2595)

  - undertow: HTTP Request smuggling vulnerability due to permitting invalid characters in HTTP requests     (CVE-2017-2666)

  - undertow: IO thread DoS via unclean Websocket closing (CVE-2017-2670)

  - jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper (CVE-2017-7525)

  - hibernate-validator: Privilege escalation when running under the security manager (CVE-2017-7536)

  - undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666) (CVE-2017-7559)

  - undertow: improper whitespace parsing leading to potential HTTP request smuggling (CVE-2017-12165)

  - EAP-7: Wrong privileges on multiple property files (CVE-2017-12167)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

RHEL 6 / 7 : eap7-jboss-ec2-eap (RHSA-2017:3458)

critical Nessus Plugin ID 105252

Version 3.12