Description
Java Management Extensions (JMX) is a Java technology that supplies tools for managing and monitoring applications, system objects, devices (e.g. printers) and service-oriented networks. Those resources are represented by objects called MBeans (for Managed Bean). In the API, classes can be dynamically loaded and instantiated. RMI (Remote Method Invocation) is a Java specific implementation of a Remote Procedure Call interface.
Remediation
In a production system is not recommended to have the JMX/RMI service publicly available. Access to this service should be restricted.
References
Related Vulnerabilities
WordPress Plugin Backup & Restore Dropbox Multiple Vulnerabilities (1.4.7.5)
Content Security Policy (CSP) Contains Out of Scope report-uri Domain
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2243)
OpenVPN AS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2061)
WordPress Plugin Gmail SMTP Arbitrary File Disclosure (1.1.0)