Atlassian Confluence < 4.3.7 Multiple Vulnerabilities

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote web application is affected by multiple vulnerabilities.

Description :

According to its self-reported version number, the instance of
Atlassian Confluence on the remote host is a version prior to 4.3.7. As
such, it may be affected by multiple vulnerabilities :

- A clickjacking vulnerability exists due to the lack of
iframe busting prevention. An attacker may exploit this
to perform a limited amount of actions on the user's
behalf.

- Persistent cross-site scripting vulnerabilities exist
in the attachment functionality that allows an
attacker to upload files, including Flash files, to a
page containing malicious JavaScript code that will be
executed when the page is viewed.

Note that Nessus did not actually test for the flaws above, but instead
has relied on the application's self-reported version number.

See also :

http://www.nessus.org/u?9082982f
http://www.nessus.org/u?fd17669f

Solution :

Apply the vendor patches or update to Confluence version 4.3.7 or
later.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.6
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: CGI abuses

Nessus Plugin ID: 71213 ()

Bugtraq ID: 61135
61170

CVE ID: