CVE-2006-3733

CVE Database · CVE-2006-3733

CVE-2006-3733

· N/AModified

CVSS v3.1

N/A

EPSS

11.76%

Published

Jul 21, 2006

Modified

Apr 15, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBCisco Security Monitoring Analysis and Response System JBoss - Command Execution TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name.

Weaknesses (CWE)

CWE-264

Affected Products (1)

cisco · security_monitoring_analysis_and_response_systemvulnerable

References (20)

http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0424.html

http://secunia.com/advisories/21118

Vendor Advisory

http://securitytracker.com/id?1016537

http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml

Patch

http://www.osvdb.org/27419