DSA-2827-1 libcommons-fileupload-java -- arbitrary file upload via deserializationID: oval:org.secpod.oval:def:601177 | Date: (C)2014-01-08 (M)2022-10-10 |
Class: PATCH | Family: unix |
It was discovered that Apache Commons FileUpload, a package to make it easy to add robust, high-performance, file upload capability to servlets and web applications, incorrectly handled file names with NULL bytes in serialized instances. A remote attacker able to supply a serialized instance of the DiskFileItem class, which will be deserialized on a server, could use this flaw to write arbitrary content to any location on the server that is accessible to the user running the application server process.
Platform: |
Debian 7.0 |
Debian 6.0 |
Product: |
libcommons-fileupload-java |