Uploaded image for project: 'Openfire (ARCHIVED)'
  1. Openfire (ARCHIVED)
  2. JM-1489

Authentication bypass allowing arbitrary code execution

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 3.6.0
    • Fix Version/s: 3.6.1
    • Component/s: Admin Console
    • Labels:
      None

      Description

      There was a posting on Full-disclosure today about various security issues in OpenFire, I quote from the original posting by Andreas Kurtz.

      The text of that posting is attached to this issue. The first issue was confirmed in this thread.

      That authentication bypass allowes access to admin console. An attacker could install / upload his own plugin, which allows arbitrary code execution with rights of openfire, including access to file system and database.

      For second vulnerability see JM-1488.
      The third is probably already fixed: JM-629.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              matt Matt Tucker
              Reporter:
              coolcat Martin Weusten
              Votes:
              2 Vote for this issue
              Watchers:
              5 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: