Detections
Analytics

Atlassian JIRA ConfigureReport.jspa 'reportKey' Information Disclosure

medium Nessus Plugin ID 48263

Language:

Synopsis

The remote web server hosts a web application that is affected by an information disclosure vulnerability.

Description

The Atlassian JIRA installation hosted on the remote web server is affected by an information disclosure vulnerability, which an unauthenticated attacker can exploit, by setting the 'reportKey' parameter in ConfigureReport.jspa to an invalid value, to gain access to sensitive information, such as operating system version, database version, or build version from the remote system.

This version of JIRA is also reportedly affected by multiple cross-site scripting vulnerabilities; however, Nessus has not tested for these issues.

Solution

Modify the JIRA 500 error page as discussed in the vendor's knowledge base article.

See Also

https://seclists.org/bugtraq/2010/Jul/254

https://id.atlassian.com/login?continue=https%3A%2F%2Fid.atlassian.com%2Fopenid%2Fv2%2Fop%3Fopenid.return_to%3Dhttps%3A%2F%2Fconfluence.atlassian.com%2Fplugins%2Fservlet%2Fauthentication%3Fauth_plugin_original_url%253D%25252Fjirakb%25252Fremove-information-from-the-500-error-page-oops-an-error-has-occurred-282174657.html%26openid.ns%3Dhttp%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%26openid.ns.sreg%3Dhttp%3A%2F%2Fopenid.net%2Fsreg%2F1.0%26openid.assoc_handle%3D11685648%26openid.identity%3Dhttp%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select%26openid.realm%3Dhttps%3A%2F%2F*.atlassian.com%26openid.claimed_id%3Dhttp%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select%26openid.sreg.required%3Dfullname%2Cnickname%2Cemail%26openid.mode%3Dcheckid_setup&prompt=&application=&tenant=&email=&errorCode=

Plugin Details

Severity: Medium

ID: 48263

File Name: jira_configurereport_reportkey_info_disclosure.nasl

Version: 1.16

Type: remote

Family: CGI abuses

Published: 8/6/2010

Updated: 6/5/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Enable CGI Scanning: true

Vulnerability Information

CPE: cpe:/a:atlassian:jira

Required KB Items: installed_sw/Atlassian JIRA

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Vulnerability Publication Date: 7/24/2010

Reference Information

BID: 42025