Detections
Analytics

IBM WebSphere Portal Dojo Module Arbitrary File Download

medium Nessus Plugin ID 63097

Language:

Synopsis

An application hosted on the remote web server has an arbitrary file download vulnerability.

Description

The version of WebSphere Portal on the remote host is using a vulnerable version of the Dojo toolkit. Input to the 'path' parameter of layerLoader.jsp is not properly validated. A remote, unauthenticated attacker could exploit this to download arbitrary files.

This vulnerability exists due to an incomplete fix for CVE-2012-2181 (detected by Nessus plugin #61488).

Solution

IBM has published APAR PM76354 to fix this vulnerability. This is included in WebSphere Portal 7.0.0.1 Cumulative Fix 19 / 7.0.0.2 Cumulative Fix 19 / 8.0 Cumulative Fix 3 and higher. Refer to IBM's advisory for more information.

See Also

http://www.nessus.org/u?b7377746

http://www.nessus.org/u?b229aef1

http://www-01.ibm.com/support/docview.wss?uid=swg21617713

Plugin Details

Severity: Medium

ID: 63097

File Name: websphere_portal_dojo_file_download2.nasl

Version: 1.11

Type: remote

Family: CGI abuses

Published: 11/29/2012

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: CVE-2012-4834

Vulnerability Information

CPE: cpe:/a:ibm:websphere_portal

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Ease: No exploit is required

Patch Publication Date: 11/16/2012

Vulnerability Publication Date: 11/16/2012

Reference Information

CVE: CVE-2012-4834

BID: 56593