CVE-2007-5085

Description

Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows remote attackers to bypass authentication and obtain "access to Geronimo internals" via unspecified vectors.

Affected products

• apache / geronimo2.0.1 – 2.0.1
• apache / geronimo2.1 – 2.1

References

• MISChttp://www.securityfocus.com/bid/25804
• MISChttp://geronimo.apache.org/2007/09/07/mejb-security-alert.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/27464
• MISChttp://www-1.ibm.com/support/docview.wss?uid=swg21271586
• MISChttp://www.securitytracker.com/id?1018877
• MISChttps://issues.apache.org/jira/browse/GERONIMO-3456
• VENDOR_ADVISORYhttp://secunia.com/advisories/26906
• MISChttp://osvdb.org/38661