Advisory: Oracle GlassFish Server Administration Console Authentication Bypass (CVE-2011-1511)

This is a quick post about a vulnerability I found in Oracle GlassFish Server (CVE-2011-1511), which was published two weeks ago (I know, I’m a bit late).

The Administration Console of Oracle GlassFish Server is prone to an authentication bypass vulnerability, which can be exploited by remote attackers by performing TRACE requests.

You can find the advisory with the analysis of the bug and its technical details here:  CORE-2010-1118: Oracle GlassFish Server Administration Console Authentication Bypass.

By the way, the timeline of the advisory deserves some attention!

And if you are asking, yes, this bug can be exploited to create an administrative account on the Glassfish Server and then execute arbitrary code on the vulnerable machine!

Advertisements