SB2018050312 - Red Hat update for jboss

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018050312

SB2018050312 - Red Hat update for jboss

Published: May 3, 2018 Updated: April 15, 2022

Security Bulletin ID SB2018050312
Severity
Low
Patch available
YES
Number of vulnerabilities 6
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 17% Medium 17% Low 67%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.


1) LDAP injection (CVE-ID: CVE-2016-8750)

The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.

The weakness exists in the LDAPLoginModule function due to improper security restrictions. A remote attacker can perform a Lightweight Directory Access Protocol (LDAP) injection attack and cause the service to crash.

2) Cross-site scripting (CVE-ID: CVE-2017-7559)

The vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The weakness exists due to insufficient sanitization of user-supplied data. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.


3) HTTP response splitting (CVE-ID: CVE-2017-12165)

The vulnerability allows a remote attacker to write arbitrary files on the target system.

The weakness exists due to processing http request headers with unusual whitespaces. A remote attacker can trick the victim into opening specially crafted input and cause http request smuggling.

4) Infinite loop (CVE-ID: CVE-2017-12626)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to infinite loops while parsing specially crafted WMF, EMF, MSG and macros and out of Memory exceptions while parsing specially crafted DOC, PPT and XLS. A remote attacker can cause the service to crash.

5) Command injection (CVE-ID: CVE-2017-1000487)

The vulnerability allows a remote attacker to execute arbitrary commands on the target system.

The weakness exists due to command injection when mishandling of double quoted strings. A remote attacker can submit specially crafted web content, inject and execute arbitrary commands.

6) HTTP response splitting (CVE-ID: CVE-2017-2666)

The vulnerability allows a remote attacker to perform a phishing attack

The vulnerability exists due to an error when processing headers in HTTP requests in Undertow. A remote attacker can create a specially crafted HTTP request, split the HTTP response from server and poison the web cache. 

Successful exploitation of the vulnerability may allow an attacker to poison web cache and perform phishing or XSS attacks against website visitors.


Remediation

Install update from vendor's website.

References