Atlassian Bamboo < 5.4.3 / 5.5.1 / 5.6.0 XWork Library ClassLoader Manipulation Remote Code Execution

critical Nessus Plugin ID 77156

Synopsis

The remote web application is affected by a remote code execution vulnerability.

Description

According to its self-reported version number, the instance of Atlassian Bamboo running on the remote host is version 5.4.x prior to 5.4.3 or 5.5.x prior to 5.5.1. It is, therefore, affected by an unspecified flaw in the XWork library. An unauthenticated, remote attacker can exploit this, via manipulation of the ClassLoader, to execute arbitrary Java code. Note that the attacker must be able to access the Bamboo web interface, and if anonymous access is enabled, a valid user account is not needed to exploit the vulnerability.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Atlassian Bamboo version 5.4.3 / 5.5.1 / 5.6.0 or later.
Alternatively, apply the patches provided by the vendor.

See Also

http://www.nessus.org/u?becf6b76

https://jira.atlassian.com/browse/BAM-14571?src=confmacro

Plugin Details

Severity: Critical

ID: 77156

File Name: bamboo_5_4_3.nasl

Version: 1.8

Type: remote

Family: CGI abuses

Published: 8/12/2014

Updated: 4/11/2022

Configuration: Enable paranoid mode, Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:atlassian:bamboo

Required KB Items: Settings/ParanoidReport, installed_sw/bamboo

Exploit Ease: No known exploits are available

Patch Publication Date: 5/21/2014

Vulnerability Publication Date: 5/6/2014

Reference Information

BID: 67622