Detections
Analytics

Apache Archiva < 1.3.5 Multiple Vulnerabilities

high Nessus Plugin ID 54970

Language:

Synopsis

The remote web server hosts an application that is affected by multiple vulnerabilities.

Description

According to its self-reported version, the instance of Apache Archiva hosted on the remote web server is earlier than 1.3.5 and thus is affected by multiple persistent and reflective cross-site scripting and cross-site request forgery vulnerabilities.

If an attacker can trick a user of the affected application into following a malicious link, this issue could be leveraged to inject arbitrary HTML or script code into the user's browser to be executed within the security context of the affected site.

Solution

Upgrade to Apache Archiva 1.3.5 or later.

See Also

https://www.securityfocus.com/archive/1/518188/30/0/threaded

https://www.securityfocus.com/archive/1/518189/30/0/threaded

http://archiva.apache.org/security.html

Plugin Details

Severity: High

ID: 54970

File Name: archiva_1_3_5.nasl

Version: 1.11

Type: remote

Family: CGI abuses

Published: 6/5/2011

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:apache:archiva

Required KB Items: www/archiva

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 5/30/2011

Reference Information

CVE: CVE-2011-1026, CVE-2011-1077

BID: 48011, 48015