1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Apache Jetspeed Arbitrary File Upload

Attack: Apache Jetspeed Arbitrary File Upload

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to execute arbitrary code on vulnerable installations of Apache Jetspeed.

Additional Information

The Import/Export function in the Portal Site Manager, part of the Jetspeed Administrative Portlets, is vulnerable to a path traversal via specially crafted file names in ZIP archives. Any user with permission to upload files via this function can upload a file with a name like "../../../../tmp/foo" to write a file named "foo" in the /tmp directory.

Affected

  • Jetspeed 2.2.0 to 2.2.2
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube