Postgres Plus Advanced Server DBA Management Server Remote Code Execution Exploit

The DBA Management Server component of EnterpriseDB Postgres Plus Advanced Server does not restrict access to the underlying JBoss JMX Console. This can be abused by remote, unauthenticated attackers to execute arbitrary code on the vulnerable server.
Vulnerabilty ID: 
Released Date: 
Thursday, April 7, 2011 - 19:00