Apache Archiva 1.3.1 CSRF Vulnerability

2010-12-07 / 2010-12-08
Credit: Deng Ching
Risk: Medium
Local: No
Remote: Yes

CVE-2010-3449: Apache Archiva CSRF Vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: Archiva 1.0 to 1.0.3 (end of life) Archiva 1.1 to 1.1.4 (end of life) Archiva 1.2 to 1.2.2 (end of life) Archiva 1.3 to 1.3.1 Description: Apache Archiva doesn't check which form sends credentials. An attacker can create a specially crafted page and force archiva administrators to view it and change their credentials. To fix this, a referrer check was added to the security interceptor for all secured actions. A prompt for the administrator's password when changing a user account was also set in place. Mitigation: All users should upgrade to 1.3.2 (http://archiva.apache.org/download.html) Credit: This issue was discovered by Anatolia Security Research Group References: http://archiva.apache.org/security.html Thanks, The Apache Archiva Team

References:

http://www.securityfocus.com/archive/1/archive/1/514937/100/0/threaded
http://mail-archives.apache.org/mod_mbox/archiva-users/201011.mbox/ajax/%3CAANLkTimXejHAuXdoUKLN=GkNty1_XnRCbv0YA0T2cS_2@mail.gmail.com%3E
http://archiva.apache.org/security.html


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top