CVE-2016-8657 jbossas writable config files allow privilege escalation

Updated 26 Apr 2018

CVE-2016-8657

It was discovered that EAP packages in certain versions of Red Hat Enterprise Linux use incorrect permissions for /etc/sysconfig/jbossas configuration files. The file is writable to jboss group (root:jboss, 664). On systems using classic /etc/init.d init scripts (i.e. on Red Hat Enterprise Linux 6 and earlier), the file is sourced by the jboss init script and its content executed with root privileges when jboss service is started, stopped, or restarted.

Note: After applying this security fix, using /var/lib/jbossas/server/$JBOSSCONF/run.conf is no longer supported due to security concern, please use /var/lib/jbossas/bin/run.conf instead.

SBR

JBoss Base AS

Product(s)

Red Hat JBoss Enterprise Application Platform

Category

Learn more

Components

jbossas

Tags

Article Type

General