Lucene search
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.SUSE_11_JAKARTA-COMMONS-FILEUPLOAD-131017.NASLHistoryNov 13, 2013 - 12:00 a.m.
SuSE 11.2 / 11.3 Security Update : jakarta-commons-fileupload (SAT Patch Numbers 8445 / 8446)
2013-11-1300:00:00
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.
www.tenable.com
8
jakarta-commons-fileupload received a security fix :
- A poison null byte flaw was found in the implementation of the DiskFileItem class. A remote attacker could able to supply a serialized instance of the DiskFileItem class, which would be deserialized on a server, could use this flaw to write arbitrary content to any location on the server that is permitted by the user running the application server process. (CVE-2013-2186)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#
if (NASL_LEVEL < 3000) exit(0);
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(70872);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2013-2186");
script_name(english:"SuSE 11.2 / 11.3 Security Update : jakarta-commons-fileupload (SAT Patch Numbers 8445 / 8446)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote SuSE 11 host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"jakarta-commons-fileupload received a security fix :
- A poison null byte flaw was found in the implementation
of the DiskFileItem class. A remote attacker could able
to supply a serialized instance of the DiskFileItem
class, which would be deserialized on a server, could
use this flaw to write arbitrary content to any location
on the server that is permitted by the user running the
application server process. (CVE-2013-2186)"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=846174"
);
script_set_attribute(
attribute:"see_also",
value:"http://support.novell.com/security/cve/CVE-2013-2186.html"
);
script_set_attribute(
attribute:"solution",
value:"Apply SAT patch number 8445 / 8446 as appropriate."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:jakarta-commons-fileupload");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:jakarta-commons-fileupload-javadoc");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");
script_set_attribute(attribute:"patch_publication_date", value:"2013/10/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/11/13");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);
flag = 0;
if (rpm_check(release:"SLES11", sp:2, reference:"jakarta-commons-fileupload-1.1.1-1.35.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, reference:"jakarta-commons-fileupload-javadoc-1.1.1-1.35.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"jakarta-commons-fileupload-1.1.1-1.35.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"jakarta-commons-fileupload-javadoc-1.1.1-1.35.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | 11 | p-cpe:/a:novell:suse_linux:11:jakarta-commons-fileupload |
| novell | suse_linux | 11 | p-cpe:/a:novell:suse_linux:11:jakarta-commons-fileupload-javadoc |
| novell | suse_linux | 11 | cpe:/o:novell:suse_linux:11 |
Related
redhat
redhat
(RHSA-2013:1429) Important: jakarta-commons-fileupload security update
2013-10-15 18:30:11
(RHSA-2013:1428) Important: jakarta-commons-fileupload security update
2013-10-15 00:00:00
(RHSA-2013:1442) Important: commons-fileupload security update
2013-10-17 17:17:19
debian
debian
[SECURITY] [DSA 2827-1] libcommons-fileupload-java security update
2013-12-24 05:38:15
[SECURITY] [DSA 2827-1] libcommons-fileupload-java security update
2013-12-24 05:38:15
securityvulns
securityvulns
[USN-2029-1] Apache Commons FileUpload vulnerability
2013-12-09 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-12-09 00:00:00
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-01-25 00:00:00
ubuntu
ubuntu
Apache Commons FileUpload vulnerability
2013-11-13 00:00:00
suse
suse
Security update for jakarta-commons-fileupload (important)
2013-11-12 19:04:18
nessus
nessus
Debian DSA-2827-1 : libcommons-fileupload-java - arbitrary file upload via deserialization
2013-12-24 00:00:00
RHEL 5 / 6 : JBoss Web Server (RHSA-2013:1428)
2014-11-08 00:00:00
openvas
openvas
Debian Security Advisory DSA 2827-1 (libcommons-fileupload-java - arbitrary file upload via deserialization)
2013-12-24 00:00:00
Ubuntu: Security Advisory (USN-2029-1)
2013-11-18 00:00:00
Ubuntu Update for libcommons-fileupload-java USN-2029-1
2013-11-18 00:00:00
osv
osv
Arbitrary file write in Apache Commons Fileupload
2022-05-14 03:52:43
Deserialization of Untrusted Data in Apache Tomcat
2022-05-17 03:47:51
f5
f5
K63443590 : Apache Commons FileUpload vulnerability CVE-2013-2186
2016-01-21 00:00:00
SOL63443590 - Apache Commons FileUpload vulnerability CVE-2013-2186
2016-01-21 00:00:00
K48758740 : Apache Tomcat vulnerability CVE-2013-2185
2020-01-30 00:00:00
prion
prion
Design/Logic Flaw
2013-10-28 21:55:00
Design/Logic Flaw
2014-01-19 18:02:00
github
github
Arbitrary file write in Apache Commons Fileupload
2022-05-14 03:52:43
Deserialization of Untrusted Data in Apache Tomcat
2022-05-17 03:47:51
checkpoint_advisories
checkpoint_advisories
veracode
veracode
Arbitrary File Write With Null Byte In File Name
2019-01-15 09:00:40
Arbitrary File Write
2019-01-15 08:58:07
Sensitive Information Disclosure
2019-05-02 05:21:25
debiancve
debiancve
CVE-2013-2186
2013-10-28 21:55:00
cve
cve
CVE-2013-2186
2013-10-28 21:55:00
CVE-2013-2185
2014-01-19 18:02:00
ubuntucve
ubuntucve
CVE-2013-2186
2013-10-28 00:00:00
CVE-2013-2185
2014-01-19 00:00:00
freebsd
freebsd
archlinux
archlinux
jenkins: multiple issues
2014-10-02 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00
Oracle Critical Patch Update - January 2016
2016-01-19 00:00:00
Related for SUSE_11_JAKARTA-COMMONS-FILEUPLOAD-131017.NASL