← volver
CVE-2010-1165

CVE-2010-1165

EPSS 4.4%
Atlassian JIRA 3.12 through 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the (1) attachment (aka attachments), (2) index (aka indexing), or (3) backup path and then uploading a file, as exploited in the wild in April 2010.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2010-04-16http://jira.atlassian.com/browse/JRA-20995http://jira.atlassian.com/browse/JRA-21004http://secunia.com/advisories/39353https://exchange.xforce.ibmcloud.com/vulnerabilities/57828http://www.openwall.com/lists/oss-security/2010/04/16/3http://www.openwall.com/lists/oss-security/2010/04/16/4http://www.securityfocus.com/bid/39485