Description: When the server is vulnerable to Oracle GlassFish Server Administration Console GET Request Authentication Bypass, it fails to enforce authentication on HTTP requests that contain lower case method names (e.g. ’get’). A remote, unauthenticated attacker could exploit this to upload and execute...
Security Vulnerabilities: Oracle GlassFish Server Administration Console Authentication Bypass
March 05, 2013 / / with No comments /
