1 Reply Latest reply on Oct 26, 2011 12:13 AM by jaikiran

    Jboss AS 4.2 patch for CVE-2010-0738 (jmx-console unauth access)

    smpub2000

      A jmx-console issue regarding unauthorized access exists in jboss 4.2.3, its outlined at https://access.redhat.com/kb/docs/DOC-30741. Is there a jboss patch available for download with this issue? If not, should the patch be applied manually?

       

      I found a similar patch for the Enterprise version (4.2 CP09), but nothing for 4.2.3, which is the highest version available for download at http://www.jboss.org/jbossas/downloads/

       

      Thanks in advance for any responses.