This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

J2EE Misconfiguration: Weak Access Permissions

From OWASP

Revision as of 18:51, 29 June 2006 by Weilin Zhong (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.

Description

The application grants code access permission inappropriately.

Examples

Permission to invoke EJB methods are granted to ANYONE role.

Related Threats

Related Attacks

Related Vulnerabilities

Related Countermeasures

Category:Access Control

Categories

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

Retrieved from "https://wiki.owasp.org/index.php?title=J2EE_Misconfiguration:_Weak_Access_Permissions&oldid=7028"