The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance.
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2013-2186 from the MITRE CVE dictionary dictionary and NIST NVD.
Base Score | 7.5 |
---|---|
Base Metrics | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | Partial |
Integrity Impact | Partial |
Availability Impact | Partial |
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Platform | Errata | Release Date |
---|---|---|
Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server (jakarta-commons-fileupload) | RHSA-2013:1428 | 2013-10-15 |
Red Hat OpenShift Enterprise 3.1 | RHSA-2016:0070 | 2016-01-26 |
Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server (jakarta-commons-fileupload) | RHSA-2013:1428 | 2013-10-15 |
Platform | Package | State |
---|---|---|
Red Hat JBoss Portal Platform 6 | commons-fileupload | Affected |
Red Hat JBoss Portal Platform 4 | commons-fileupload | Affected |
Red Hat JBoss Portal 5 | commons-fileupload | Affected |
Red Hat JBoss Operations Network 3.1 | commons-fileupload | Affected |
Red Hat JBoss Enterprise SOA Platform 5 | commons-fileupload | Affected |
Red Hat JBoss Enterprise SOA Platform 4.3 | commons-fileupload | Affected |
Red Hat JBoss EWS 1 | commons-fileupload | Affected |
Red Hat JBoss BRMS 5 | commons-fileupload | Affected |