CVE-2008-0457 - OpenCVE

Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by Symantec Backup Exec System Recovery Manager 7.0 and 7.0.1, allows remote attackers to upload and execute arbitrary JSP files via unknown vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Symantec	Backupexec System Recovery

Configuration 1 [-]

OR	cpe:2.3:a:symantec:backupexec_system_recovery:7.0:::::::*
	cpe:2.3:a:symantec:backupexec_system_recovery:7.01:::::::*

References

Link	Resource
http://secunia.com/advisories/28787	Vendor Advisory
http://seer.entsupport.symantec.com/docs/297171.htm	Patch
http://www.securityfocus.com/archive/1/487688/100/0/threaded
http://www.securityfocus.com/bid/27487	Exploit
http://www.securitytracker.com/id?1019303
http://www.symantec.com/avcenter/security/Content/2008.02.04.html	Patch
http://www.vupen.com/english/advisories/2008/0413	Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-08-003.html
https://www.exploit-db.com/exploits/5078

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2008-02-07T20:00:00

Updated: 2018-10-15T20:57:01

Reserved: 2008-01-24T00:00:00

Link: CVE-2008-0457

JSON object: View

NVD Information

Status : Modified

Published: 2008-02-07T21:00:00.000

Modified: 2018-10-15T22:00:43.613

Link: CVE-2008-0457

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-02-04T00:00:00", "descriptions": [{"lang": "en", "value": "Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by Symantec Backup Exec System Recovery Manager 7.0 and 7.0.1, allows remote attackers to upload and execute arbitrary JSP files via unknown vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-15T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "5078", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/5078"}, {"name": "28787", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28787"}, {"name": "20080206 ZDI-08-003: Symantec Backup Exec Remote File Upload Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/487688/100/0/threaded"}, {"name": "ADV-2008-0413", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/0413"}, {"name": "27487", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/27487"}, {"name": "1019303", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1019303"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://seer.entsupport.symantec.com/docs/297171.htm"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.symantec.com/avcenter/security/Content/2008.02.04.html"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-003.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-0457", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by Symantec Backup Exec System Recovery Manager 7.0 and 7.0.1, allows remote attackers to upload and execute arbitrary JSP files via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "5078", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/5078"}, {"name": "28787", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28787"}, {"name": "20080206 ZDI-08-003: Symantec Backup Exec Remote File Upload Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/487688/100/0/threaded"}, {"name": "ADV-2008-0413", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/0413"}, {"name": "27487", "refsource": "BID", "url": "http://www.securityfocus.com/bid/27487"}, {"name": "1019303", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1019303"}, {"name": "http://seer.entsupport.symantec.com/docs/297171.htm", "refsource": "CONFIRM", "url": "http://seer.entsupport.symantec.com/docs/297171.htm"}, {"name": "http://www.symantec.com/avcenter/security/Content/2008.02.04.html", "refsource": "CONFIRM", "url": "http://www.symantec.com/avcenter/security/Content/2008.02.04.html"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-08-003.html", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-003.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-0457", "datePublished": "2008-02-07T20:00:00", "dateReserved": "2008-01-24T00:00:00", "dateUpdated": "2018-10-15T20:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:symantec:backupexec_system_recovery:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "17E843F0-6A21-4778-864C-CAADB1AC1457", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec:backupexec_system_recovery:7.01:*:*:*:*:*:*:*", "matchCriteriaId": "609721EB-AAAC-4716-BD42-AB69180BC44D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by Symantec Backup Exec System Recovery Manager 7.0 and 7.0.1, allows remote attackers to upload and execute arbitrary JSP files via unknown vectors."}, {"lang": "es", "value": "Una vulnerabilidad de carga de archivos sin restricciones en la clase FileUpload que se ejecuta en el servidor Symantec LiveState Apache Tomcat, tal y como es usado por Symantec Backup Exec System Recovery Manager versiones 7.0 y 7.0.1, permite a los atacantes remotos cargar y ejecutar archivos JSP arbitrarios por medio de vectores de ataque desconocidos."}], "id": "CVE-2008-0457", "lastModified": "2018-10-15T22:00:43.613", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-02-07T21:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/28787"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://seer.entsupport.symantec.com/docs/297171.htm"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/487688/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/27487"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1019303"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.symantec.com/avcenter/security/Content/2008.02.04.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2008/0413"}, {"source": "cve@mitre.org", "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-003.html"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/5078"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}