Oracle GlassFish Server Administration Console Authentication Bypass Remote Code Execution Exploit Update

The Administration Console of Oracle GlassFish Server is prone to an authentication bypass vulnerability, which can be achieved by performing HTTP TRACE requests. A remote unauthenticated attacker can exploit this in order to execute arbitrary code on the vulnerable server. This update adds support for Solaris platforms.
Vulnerabilty ID: 
Product Version: 
Released Date: 
Wednesday, December 14, 2011 - 00:00