Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 125
  • Last Modified:

Is there a WIndows patch for the JBOSS exploits

Has anyone found if there is a patch for a JBOSS exploit for Windows.  I know they are available for RedHat but I couldn't find anything other that a reference to JBOSS in that patches that MS put out on April 2016.
0
Member_2_7969384
Asked:
Member_2_7969384
  • 2
2 Solutions
 
Russ SuterCommented:
JBOSS is a RedHat product. RedHat would be responsible for releasing patches. Microsoft would have nothing to do with it.
0
 
Member_2_7969384Author Commented:
Thanks, that is what I thought but since there were references out there to windows I thought it best to ask the question.  Thank you for the quick feed back.
0
 
btanExec ConsultantCommented:
It is not to patch Windows as Russ Suter has shared. The concern is more of surfacing webshell backdoor in vulnerable machines. Generally, servers systems running web services and mostly those exposed to public internet accesss should be scanned if there is such indicator of compromise existence

jbossass.jsp      jbossass_jsp.class
shellinvoker.jsp      shellinvoker_jsp.class
mela.jsp      mela_jsp.class
zecmd.jsp      zecmd_jsp.class
cmd.jsp      cmd_jsp.class
wstats.jsp      wstats_jsp.class
idssvc.jsp      idssvc_jsp.class
iesvc.jsp      iesvc_jsp.class
http://blog.talosintel.com/2016/04/jboss-backdoor.html
See also US-CERT part advisory on webshell - https://www.us-cert.gov/ncas/alerts/TA15-314A

Just make sure your server system is readily patched to the latest security patch for business running

To share there is also another recent Jboss security advisory to address the Red Hat JBoss JGroups security bypass vulnerability.- https://tools.cisco.com/security/center/viewAlert.x?alertId=46834
0
 
btanExec ConsultantCommented:
It is explained on the exploit is not readily applicable but however, the threats lies in other type
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now