Apache Solr < 4.1.0 Multiple XML External Entity Injections

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote web server contains a Java application that is affected by
multiple XML External Entity Injection vulnerabilities.

Description :

The version of Apache Solr hosted on the remote web server is affected
by multiple XML External Entity Injection vulnerabilities because the
XML parser accepts XML data containing external entity declarations from
untrusted sources. A remote, unauthenticated attacker could take
advantage of this flaw in order to gain access to arbitrary files or
cause a denial of service (DoS) condition.

See also :

https://issues.apache.org/jira/browse/SOLR-3895
http://lucene.apache.org/solr/4_1_0/changes/Changes.html

Solution :

Upgrade to Apache Solr version 4.1.0 or later.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.5
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: CGI abuses

Nessus Plugin ID: 71844 ()

Bugtraq ID: 64008
64427

CVE ID: CVE-2012-6612
CVE-2013-6407