7.5 - USN-2029-1

Executive Summary

Summary
Title	Apache Commons FileUpload vulnerability

Informations
Name	USN-2029-1	First vendor Publication	2013-11-13
Vendor	Ubuntu	Last vendor Modification	2013-11-13
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 10.04 LTS

Summary:

Apache Commons FileUpload could be made to overwrite files.

Software Description: - libcommons-fileupload-java: File upload capability for servlets and web applications

Details:

It was discovered that Apache Commons FileUpload incorrectly handled file names with NULL bytes in serialized instances. An attacker could use this issue to possibly write to arbitrary files.

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 10.04 LTS:
libcommons-fileupload-java 1.2.1-3ubuntu2.1

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2029-1
CVE-2013-2186

Package Information:
https://launchpad.net/ubuntu/+source/libcommons-fileupload-java/1.2.1-3ubuntu2.1

Original Source

Url : http://www.ubuntu.com/usn/USN-2029-1

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-20	Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:19947

Oval ID:	oval:org.mitre.oval:def:19947
Title:	USN-2029-1 -- libcommons-fileupload-java vulnerability
Description:	Apache Commons FileUpload could be made to overwrite files.
Family:	unix	Class:	patch
Reference(s):	USN-2029-1 CVE-2013-2186	Version:	5
Platform(s):	Ubuntu 10.04	Product(s):	libcommons-fileupload-java
Definition Synopsis:
Ubuntu 10.04 is installed AND libcommons-fileupload-java DPKG is earlier than 0:1.2.1-3ubuntu2.1

Definition Id: oval:org.mitre.oval:def:20856

Oval ID:	oval:org.mitre.oval:def:20856
Title:	DSA-2827-1 libcommons-fileupload-java - arbitrary file upload via deserialization
Description:	It was discovered that Apache Commons FileUpload, a package to make it easy to add robust, high-performance, file upload capability to servlets and web applications, incorrectly handled file names with NULL bytes in serialized instances. A remote attacker able to supply a serialized instance of the DiskFileItem class, which will be deserialized on a server, could use this flaw to write arbitrary content to any location on the server that is accessible to the user running the application server process.
Family:	unix	Class:	patch
Reference(s):	DSA-2827-1 CVE-2013-2186	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/Linux 7 Debian GNU/kFreeBSD 6.0 Debian GNU/kFreeBSD 7	Product(s):	libcommons-fileupload-java
Definition Synopsis:
Release section Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND libcommons-fileupload-java DPKG is earlier than 0:1.2.2-1+deb6u1 AND Release section Debian 7 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND libcommons-fileupload-java DPKG is earlier than 0:1.2.2-1+deb7u1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Redhat Jboss Enterprise Brms Platform cpe:2.3:a:redhat:jboss_enterprise_brms_platform:5.3.1:::::::*	1
Application	Redhat Jboss Enterprise Portal Platform cpe:2.3:a:redhat:jboss_enterprise_portal_platform:6.0.0:::::::* cpe:2.3:a:redhat:jboss_enterprise_portal_platform:5.2.2:::::::* cpe:2.3:a:redhat:jboss_enterprise_portal_platform:4.3.0:cp07::::::	3
Application	Redhat Jboss Enterprise Web Server cpe:2.3:a:redhat:jboss_enterprise_web_server:1.0.2:::::::*	1
Application	Redhat Openshift cpe:2.3:a:redhat:openshift:3.1::::enterprise::: cpe:2.3:a:redhat:openshift:3.0.0.0::::enterprise::: cpe:2.3:a:redhat:openshift:3.0:::::::* cpe:2.3:a:redhat:openshift:3.0::::enterprise::: cpe:2.3:a:redhat:openshift:2.2::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.7::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.6::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.5::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.4::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.3::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.2::::enterprise::: cpe:2.3:a:redhat:openshift:2.1.1::::enterprise::: cpe:2.3:a:redhat:openshift:2.1::::enterprise::: cpe:2.3:a:redhat:openshift:2.0.6::::enterprise::: cpe:2.3:a:redhat:openshift:2.0.5::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.4::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.3::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.2::enterprise::::: cpe:2.3:a:redhat:openshift:2.0.1::enterprise::::: cpe:2.3:a:redhat:openshift:2.0:::::::* cpe:2.3:a:redhat:openshift:2.0::::enterprise::: cpe:2.3:a:redhat:openshift:1.2.8::::enterprise::: cpe:2.3:a:redhat:openshift:1.2.7::enterprise::::: cpe:2.3:a:redhat:openshift:1.2::::enterprise::: cpe:2.3:a:redhat:openshift:1.0::::enterprise::: cpe:2.3:a:redhat:openshift:1.0:-:enterprise:::::* cpe:2.3:a:redhat:openshift:1.0::::-::: cpe:2.3:a:redhat:openshift:0.0.5:::::::* cpe:2.3:a:redhat:openshift:::::enterprise:::* cpe:2.3:a:redhat:openshift:::::::: cpe:2.3:a:redhat:openshift:-:::::::* cpe:2.3:a:redhat:openshift:-:::::aws::	32
Os	Redhat Openshift cpe:2.3:o:redhat:openshift:2.0::enterprise:::::	1
Os	Ubuntu cpe:2.3:o:ubuntu:ubuntu:10.04::lts:::::	1

Information Assurance Vulnerability Management (IAVM)

Date	Description
2015-07-16	IAVM : 2015-A-0154 - Multiple Vulnerabilities in Oracle Fusion Middleware Severity : Category I - VMSKEY : V0061081

Nessus® Vulnerability Scanner

Date	Description
2014-11-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2013-1428.nasl - Type : ACT_GATHER_INFO
2014-11-04	Name : The remote web server hosts a job scheduling and management system that is af... File : jenkins_1_583.nasl - Type : ACT_GATHER_INFO
2014-10-02	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_549a277149cc11e4ae2cc80aa9043978.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2013-786.nasl - Type : ACT_GATHER_INFO
2013-12-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2827.nasl - Type : ACT_GATHER_INFO
2013-11-13	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_jakarta-commons-fileupload-131017.nasl - Type : ACT_GATHER_INFO
2013-11-13	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2029-1.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2016-02-11 08:49:20	Multiple Updates
2016-02-11 05:29:14	Multiple Updates
2016-02-11 00:29:32	Multiple Updates
2016-02-10 21:29:38	Multiple Updates
2016-02-10 17:29:18	Multiple Updates
2016-02-10 13:28:09	Multiple Updates
2016-02-10 09:29:12	Multiple Updates
2016-02-10 05:29:26	Multiple Updates
2016-02-06 05:29:20	Multiple Updates
2016-02-05 09:29:32	Multiple Updates
2016-01-22 09:26:50	Multiple Updates
2014-02-17 12:02:46	Multiple Updates
2013-11-13 17:18:21	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	2
CPE ID(s)	39
IAVM(s)	1
Nessus® Exploit(s)	7

	Related
7.5	CVE-2013-2186
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

7.5 - USN-2029-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Information Assurance Vulnerability Management (IAVM)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU