• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Jboss - Status Servlet Information Disclosure Vulnerability

 
Greenhorn
Posts: 21
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
In an attempt to pass PCI compliance test I have been reported the following, due to this vulnerability a set of tests are failing.

Here is the screen shot I have been provided.






The bug it refers to is https://bugzilla.redhat.com/show_bug.cgi?id=457757


Now all it says is to upgrade to a more recent version of Jboss EAP - in my case it would be Jboss AS i suppose - other then that I cannot find a workaround for it.


Is upgrade the only solution or is there any other workaround that can save the pain of an upgrade ?
Currently I am using Jboss AS 4.0.3 SP1.



Your help is really appreciated. Thank you



Asad Imtiaz
 
When all four tires fall off your canoe, how many tiny ads does it take to build a doghouse?
a bit of art, as a gift, the permaculture playing cards
https://gardener-gift.com
reply
    Bookmark Topic Watch Topic
  • New Topic