cnvd - cnvd-2015-03404

CNVD-2015-03404

Vulnerability from cnvd - Published: 2015-05-28

Title

Apache Jackrabbit XML外部实体输入漏洞

Description

Apache Jackrabbit是一个完全遵守Java API版的内容存储规范(JCR)的实现。 Apache Jackrabbit存在XML外部实体注入漏洞，允许远程攻击者可利用漏洞提交特殊的XML请求，获取敏感信息。

Severity

中

Patch Name

Apache Jackrabbit XML外部实体输入漏洞的补丁

Patch Description

Apache Jackrabbit是一个完全遵守Java API版的内容存储规范(JCR)的实现。Apache Jackrabbit存在XML外部实体注入漏洞，允许远程攻击者可利用漏洞提交特殊的XML请求，获取敏感信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： http://jackrabbit.apache.org/

Reference

http://www.securityfocus.com/bid/74761 https://www.exploit-db.com/exploits/37110/

Impacted products

Name
Apache Jackrabbit 2.10.1

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "74761"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-1833"
    }
  },
  "description": "Apache Jackrabbit\u662f\u4e00\u4e2a\u5b8c\u5168\u9075\u5b88Java API\u7248\u7684\u5185\u5bb9\u5b58\u50a8\u89c4\u8303(JCR)\u7684\u5b9e\u73b0\u3002\r\n\r\nApache Jackrabbit\u5b58\u5728XML\u5916\u90e8\u5b9e\u4f53\u6ce8\u5165\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u7684XML\u8bf7\u6c42\uff0c\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "Julian Reschke",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://jackrabbit.apache.org/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-03404",
  "openTime": "2015-05-28",
  "patchDescription": "Apache Jackrabbit\u662f\u4e00\u4e2a\u5b8c\u5168\u9075\u5b88Java API\u7248\u7684\u5185\u5bb9\u5b58\u50a8\u89c4\u8303(JCR)\u7684\u5b9e\u73b0\u3002Apache Jackrabbit\u5b58\u5728XML\u5916\u90e8\u5b9e\u4f53\u6ce8\u5165\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u7684XML\u8bf7\u6c42\uff0c\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache Jackrabbit XML\u5916\u90e8\u5b9e\u4f53\u8f93\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Apache Jackrabbit 2.10.1"
  },
  "referenceLink": "http://www.securityfocus.com/bid/74761\r\nhttps://www.exploit-db.com/exploits/37110/",
  "serverity": "\u4e2d",
  "submitTime": "2015-05-26",
  "title": "Apache Jackrabbit XML\u5916\u90e8\u5b9e\u4f53\u8f93\u5165\u6f0f\u6d1e"
}

CVE-2015-1833 (GCVE-0-2015-1833)

Vulnerability from cvelistv5 – Published: 2015-05-29 15:00 – Updated: 2024-08-06 04:54

Summary

XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.1, and 2.10.x before 2.10.1 allows remote attackers to read arbitrary files and send requests to intranet servers via a crafted WebDAV request.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

Tags

	http://www.debian.org/security/2015/dsa-3298	vendor-advisoryx_refsource_DEBIAN
	http://www.securityfocus.com/bid/74761	vdb-entryx_refsource_BID
	https://www.exploit-db.com/exploits/37110/	exploitx_refsource_EXPLOIT-DB
	http://mail-archives.apache.org/mod_mbox/jackrabb…	mailing-listx_refsource_MLIST
	http://www.securityfocus.com/archive/1/535582/100…	mailing-listx_refsource_BUGTRAQ
	http://www.apache.org/dist/jackrabbit/2.10.1/RELE…	x_refsource_CONFIRM
	https://issues.apache.org/jira/browse/JCR-3883	x_refsource_CONFIRM
	http://packetstormsecurity.com/files/132005/Jackr…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:54:16.299Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-3298",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3298"
          },
          {
            "name": "74761",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/74761"
          },
          {
            "name": "37110",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/37110/"
          },
          {
            "name": "[jackrabbit-announce] 20150521 CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://mail-archives.apache.org/mod_mbox/jackrabbit-announce/201505.mbox/%3C555DA644.8080908%40greenbytes.de%3E"
          },
          {
            "name": "20150521 CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/535582/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.apache.org/dist/jackrabbit/2.10.1/RELEASE-NOTES.txt"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://issues.apache.org/jira/browse/JCR-3883"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/132005/Jackrabbit-WebDAV-XXE-Injection.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-05-21T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.1, and 2.10.x before 2.10.1 allows remote attackers to read arbitrary files and send requests to intranet servers via a crafted WebDAV request."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-09T18:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "DSA-3298",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3298"
        },
        {
          "name": "74761",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/74761"
        },
        {
          "name": "37110",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/37110/"
        },
        {
          "name": "[jackrabbit-announce] 20150521 CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://mail-archives.apache.org/mod_mbox/jackrabbit-announce/201505.mbox/%3C555DA644.8080908%40greenbytes.de%3E"
        },
        {
          "name": "20150521 CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/535582/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.apache.org/dist/jackrabbit/2.10.1/RELEASE-NOTES.txt"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://issues.apache.org/jira/browse/JCR-3883"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/132005/Jackrabbit-WebDAV-XXE-Injection.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2015-1833",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.1, and 2.10.x before 2.10.1 allows remote attackers to read arbitrary files and send requests to intranet servers via a crafted WebDAV request."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-3298",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2015/dsa-3298"
            },
            {
              "name": "74761",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/74761"
            },
            {
              "name": "37110",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/37110/"
            },
            {
              "name": "[jackrabbit-announce] 20150521 CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability)",
              "refsource": "MLIST",
              "url": "http://mail-archives.apache.org/mod_mbox/jackrabbit-announce/201505.mbox/%3C555DA644.8080908%40greenbytes.de%3E"
            },
            {
              "name": "20150521 CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/535582/100/0/threaded"
            },
            {
              "name": "http://www.apache.org/dist/jackrabbit/2.10.1/RELEASE-NOTES.txt",
              "refsource": "CONFIRM",
              "url": "http://www.apache.org/dist/jackrabbit/2.10.1/RELEASE-NOTES.txt"
            },
            {
              "name": "https://issues.apache.org/jira/browse/JCR-3883",
              "refsource": "CONFIRM",
              "url": "https://issues.apache.org/jira/browse/JCR-3883"
            },
            {
              "name": "http://packetstormsecurity.com/files/132005/Jackrabbit-WebDAV-XXE-Injection.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/132005/Jackrabbit-WebDAV-XXE-Injection.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2015-1833",
    "datePublished": "2015-05-29T15:00:00",
    "dateReserved": "2015-02-17T00:00:00",
    "dateUpdated": "2024-08-06T04:54:16.299Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2015-03404

CVE-2015-1833 (GCVE-0-2015-1833)

Tags

Sightings

Nomenclature