J2EE Misconfiguration: Weak Access Permissions

Description
The application grants code access permission inappropriately.

Examples

 * Permission to invoke EJB methods are granted to ANYONE role.

Related Countermeasures
Category:Access Control