CVE-2013-2185

Summary

CVE	CVE-2013-2185
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2014-01-19 18:02:00 UTC
Updated	2023-11-07 02:14:00 UTC
Description	DISPUTED The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar issue to CVE-2013-2186. NOTE: this issue is reportedly disputed by the Apache Tomcat team, although Red Hat considers it a vulnerability. The dispute appears to regard whether it is the responsibility of applications to avoid providing untrusted data to be deserialized, or whether this class should inherently protect against this issue.

Risk And Classification

Problem Types: CWE-20

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Apache	Tomcat	All	All	All	All
Application	Redhat	Jboss Enterprise Application Platform	6.1.0	All	All	All
Application	Redhat	Jboss Enterprise Application Platform	6.1.0	All	All	All
Application	Redhat	Jboss Enterprise Portal Platform	6.0.0	All	All	All
Application	Redhat	Jboss Enterprise Portal Platform	6.0.0	All	All	All

References

Reference	Source	Link	Tags
oss-security - Re: Duplicate Request: CVE-2013-4444 as a duplicate of CVE-2013-2185	MLIST	openwall.com
Red Hat Customer Portal	REDHAT	rhn.redhat.com	Vendor Advisory
Red Hat Customer Portal	REDHAT	rhn.redhat.com	Vendor Advisory
RHSA-2013:1265	REDHAT	rhn.redhat.com	Vendor Advisory
oss-security - Re: CVE-2013-2185 / Tomcat	MLIST	www.openwall.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.