Lucene search
PRIOn knowledge basePRION:CVE-2010-1165HistoryApr 20, 2010 - 3:30 p.m.
Path traversal
2010-04-2015:30:00
PRIOn knowledge base
www.prio-n.com
1
Atlassian JIRA 3.12 through 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the (1) attachment (aka attachments), (2) index (aka indexing), or (3) backup path and then uploading a file, as exploited in the wild in April 2010.
References
confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2010-04-16
jira.atlassian.com/browse/JRA-20995
jira.atlassian.com/browse/JRA-21004
secunia.com/advisories/39353
www.openwall.com/lists/oss-security/2010/04/16/3
www.openwall.com/lists/oss-security/2010/04/16/4
www.securityfocus.com/bid/39485
exchange.xforce.ibmcloud.com/vulnerabilities/57828
Related
cve
cve
CVE-2010-1165
2010-04-20 15:30:00
nvd
nvd
CVE-2010-1165
2010-04-20 15:30:00
cvelist
cvelist
CVE-2010-1165
2010-04-20 15:00:00
nessus
nessus
Atlassian Jira < 4.1.1 Multiple Vulnerabilities
2018-02-06 00:00:00
openvas
openvas