CVE-2007-4548

The login method in LoginModule implementations in Apache Geronimo 2.0 does not throw FailedLoginException for failed logins, which allows remote attackers to bypass authentication requirements, deploy arbitrary modules, and gain administrative access by sending a blank username and password with the command line deployer in the deployment module.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.nabble.com/Geronimo-2.0-Release-suspended-due-to-security-issue-found-before-release-t4263667s134.html
http://geronimo.apache.org/2007/08/21/apache-geronimo-201-released.html
https://issues.apache.org/jira/browse/GERONIMO-1201
http://geronimo.apache.org/2007/08/13/apache-geronimo-v20-release-delayed-due-to-security-issue.html
https://issues.apache.org/jira/browse/GERONIMO-3404	Patch

Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:geronimo:2.0:*:*:*:*:*:*:*

Information

Published : 2007-08-27 16:17

Updated : 2008-09-05 14:28

NVD link : CVE-2007-4548

Mitre link : CVE-2007-4548

JSON object : View

CWE

CWE-287

Improper Authentication

Products Affected

apache

geronimo

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.nabble.com/Geronimo-2.0-Release-suspended-due-to-security-issue-found-before-release-t4263667s134.html", "name": "[dev] 20070813 Geronimo 2.0 Release suspended due to security issue found before release", "tags": [], "refsource": "MLIST"}, {"url": "http://geronimo.apache.org/2007/08/21/apache-geronimo-201-released.html", "name": "http://geronimo.apache.org/2007/08/21/apache-geronimo-201-released.html", "tags": [], "refsource": "MISC"}, {"url": "https://issues.apache.org/jira/browse/GERONIMO-1201", "name": "https://issues.apache.org/jira/browse/GERONIMO-1201", "tags": [], "refsource": "MISC"}, {"url": "http://geronimo.apache.org/2007/08/13/apache-geronimo-v20-release-delayed-due-to-security-issue.html", "name": "http://geronimo.apache.org/2007/08/13/apache-geronimo-v20-release-delayed-due-to-security-issue.html", "tags": [], "refsource": "CONFIRM"}, {"url": "https://issues.apache.org/jira/browse/GERONIMO-3404", "name": "https://issues.apache.org/jira/browse/GERONIMO-3404", "tags": ["Patch"], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The login method in LoginModule implementations in Apache Geronimo 2.0 does not throw FailedLoginException for failed logins, which allows remote attackers to bypass authentication requirements, deploy arbitrary modules, and gain administrative access by sending a blank username and password with the command line deployer in the deployment module."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-287"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-4548", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-08-27T23:17Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:apache:geronimo:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2008-09-05T21:28Z"}

10.0 /10