Jenkins Multiple Cross Site Scripting and Directory Traversal Vulnerabilities

Bugtraq ID:	52384
Class:	Input Validation Error
CVE:	CVE-2012-0324 CVE-2012-0325
Remote:	Yes
Local:	No
Published:	Mar 09 2012 12:00AM
Updated:	Mar 19 2015 08:19AM
Credit:	Minoru Sakai
Vulnerable:	Jenkins CI Jenkins 1.409.3 Jenkins CI Jenkins 1.452 Jenkins CI Jenkins 1.451 Jenkins CI Jenkins 1.447 Jenkins CI Jenkins 1.446 Jenkins CI Jenkins 1.438 Jenkins CI Jenkins 1.424.3 Jenkins CI Jenkins 1.424.2 Jenkins CI Jenkins 1.424.1 Jenkins CI Jenkins 1.408 Jenkins CI Jenkins 1.400.0.12
Not Vulnerable:	Jenkins CI Jenkins 1.454 Jenkins CI Jenkins 1.424.5.1 Jenkins CI Jenkins 1.424.5 Jenkins CI Jenkins 1.400.0.13

Jenkins Multiple Cross Site Scripting and Directory Traversal Vulnerabilities

Jenkins is prone to an unspecified cross-site scripting vulnerability and an unspecified directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting these issues will allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and allow viewing of arbitrary local files and directories within the context of the webserver. This may let the attacker steal cookie-based authentication credentials. Other harvested information may aid in launching further attacks.

Jenkins Multiple Cross Site Scripting and Directory Traversal Vulnerabilities

Solution:
Updates are available. Please see the references for more details.