CVE-2017-7411
CVE-2017-7411
An issue was discovered in Enalean Tuleap 9.6 and prior versions. The vulnerability exists because the User::getRecentElements() method is using the unserialize() function with a preference value that can be arbitrarily manipulated by malicious users through the REST API interface, and this can be exploited to inject arbitrary PHP objects into the application scope, allowing an attacker to perform a variety of attacks (including but not limited to Remote Code Execution).
Produtos afetados
n/a · n/aPoCs públicas encontradas — 3
cve_referencepacketstormsecurity.com/files/144716/Tuleap-9.6-Second-Order-PHP-Object-Injection.htmlnão verificadocve_referencewww.exploit-db.com/exploits/43374/não verificadoexploitdbwww.exploit-db.com/exploits/43374não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://karmainsecurity.com/KIS-2017-02http://packetstormsecurity.com/files/144716/Tuleap-9.6-Second-Order-PHP-Object-Injection.htmlhttp://seclists.org/fulldisclosure/2017/Oct/53https://tuleap.net/plugins/tracker/?aid=10118https://www.exploit-db.com/exploits/43374/http://www.openwall.com/lists/oss-security/2017/10/23/3