CVE-2010-1871
CVE-2010-1871
In short
JBoss Seam 2 doesn't properly filter user input in URLs, allowing attackers to inject malicious code that gets executed on the server. This bypasses security protections and can compromise the entire application.
Technical detail
CWE-917 (Expression Language Injection) in JBoss Seam 2 permits remote code execution through unsanitized URL parameters processed by JBoss EL. Attack requires improper Java Security Manager configuration; successful exploitation grants arbitrary code execution on the application server.
Summary generated and translated by AI from the official description.
JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, does not properly sanitize inputs for JBoss Expression Language (EL) expressions, which allows remote attackers to execute arbitrary code via a crafted URL. NOTE: this is only a vulnerability when the Java Security Manager is not properly configured.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/36653unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archives.neohapsis.com/archives/bugtraq/2013-05/0117.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=615956https://exchange.xforce.ibmcloud.com/vulnerabilities/60794https://security.netapp.com/advisory/ntap-20161017-0001/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-1871http://www.redhat.com/support/errata/RHSA-2010-0564.htmlhttp://www.securityfocus.com/bid/41994http://www.securitytracker.com/id?1024253http://www.vupen.com/english/advisories/2010/1929