Unrated severityNVD Advisory· Published Aug 13, 2012· Updated Jun 16, 2026
CVE-2009-5066
CVE-2009-5066
Description
twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:redhat:jboss_community_application_server:5.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
16- objectopia.com/2009/10/01/securing-jmx-invoker-layer-in-jboss/nvdURL Repurposed
- rhn.redhat.com/errata/RHSA-2013-0191.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0192.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0193.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0194.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0195.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0196.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0197.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0198.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0221.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-0533.htmlnvd
- secunia.com/advisories/51984nvd
- secunia.com/advisories/52054nvd
- www.openwall.com/lists/oss-security/2012/07/20/1nvd
- www.openwall.com/lists/oss-security/2012/07/23/2nvd
- issues.jboss.org/browse/JBPAPP-3391nvd
News mentions
0No linked articles in our index yet.