- Eliel Reis;
- Messias Freire;
- Sally Araniva;
- Stones Júnior;
- Jacob Reis;
- Wanderlei Rocha;
- Eduardo Seffair Filho;
Stones, Jacob, Eliel e Messias.
|
Messias e Eliel.
|
Wanderley, Sally e Jorge Willian.
|
Para mais informações:
Stones, Jacob, Eliel e Messias.
|
Messias e Eliel.
|
Wanderley, Sally e Jorge Willian.
|
Para mais informações:
—————————————————————————————————-
Apache MyFaces information disclosure vulnerability
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
MyFaces Core 2.0.1 to 2.0.11
MyFaces Core 2.1.0 to 2.1.5
Earlier versions are not affected
Description:
MyFaces JavaServer Faces (JSF) allows relative paths in the
javax.faces.resource ‘ln’ parameter or writing the url so the resource
name include ‘..’ sequences . An attacker could use the security
vulnerability to view files that they should not be able to.
Mitigation:
Users of affected versions should apply one of the following mitigations:
MyFaces Core 2.0.x users should update to 2.0.12
MyFaces Core 2.1.x users should update to 2.1.6
Example:
In linux or similar systems:
http://:/<cont
or in windows systems:
context-root>/faces/javax.faces.resource/web.xml?ln=..\\WEB-INFThe ‘ln’ parameter should not allow a relative path. In the above example
Credit: Issue reported by Paul Nicolucci thanks to the security team at IBM
References:
—————————————————————————————————-</cont
</cont
Site Oficial
User Guide
http://primefaces.googlecode.com/files/primefaces_users_guide_3_0.pdfhttp://primefaces.googlecode.com/files/primefaces_users_guide_3_0.pdf
Um grande Abrc.
Natanael Fonseca