CVE-2010-1429
NUCLEIRed Hat JBoss EAP <4.2.0.CP09 and <4.3.0.CP08 - Info Disclosure
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2010-1429.
PoCs published by Tyler Krpata, Zach Grace <@ztgrace>, including Metasploit module auxiliary/scanner/http/jboss_status.
A Nuclei detection template is also available.
AI-analyzed exploit summary This Metasploit module queries the JBoss status servlet to collect sensitive information such as URL paths, GET parameters, and client IP addresses. It does not exploit the vulnerability but scans for exposed information.
Description
Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string. NOTE: this issue exists because of a CVE-2008-3273 regression.
Exploits (2)
This Metasploit module queries the JBoss status servlet to collect sensitive information such as URL paths, GET parameters, and client IP addresses. It does not exploit the vulnerability but scans for exposed information.
This Metasploit module scans JBoss instances for multiple vulnerabilities, including unauthenticated access to sensitive endpoints, authentication bypass via HTTP verb tampering, and default credential checks. It does not exploit vulnerabilities but identifies potential misconfigurations and weaknesses.
Nuclei Templates (1)
title:"JBoss" || cpe:"cpe:2.3:a:redhat:jboss_enterprise_application_platform" || http.title:"jboss"
title="jboss"