Path traversal in IBM WebSphere Application Server

Published: 2018-11-16 15:20:42
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2018-1797
CVSSv3 5.5 [CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C]
CWE ID CWE-22
Exploitation vector Local
Public exploit N/A
Vulnerable software IBM WebSphere Application Server
Vulnerable software versions IBM WebSphere Application Server 9.0.0.9
IBM WebSphere Application Server 9.0.0.8
IBM WebSphere Application Server 9.0.0.6

Show more

Vendor URL IBM Corporation

Security Advisory

1) Path traversal

Description

The vulnerability allows a remote attacker to conduct directory traversal attack.

The vulnerability exists due to improper validation of user-supplied input on systems that have an Enterprise Bundle Archive (EBA) installed and with a path external to the EBA. A remote attacker can trick the victim into extracting a specially crafted ZIP archive containing 'dot dot slash' sequences that, when executed, will write arbitrary files on the target system.

Note: This vulnerability is known as "Zip-Slip".

Remediation

Install update from vendor's website.

External links

http://www-01.ibm.com/support/docview.wss?uid=ibm10730699

Back to List