Atlassian Bitbucket Server 4.x < 4.8.2 Directory Traversal
High Nessus Network Monitor Plugin ID 9941
SynopsisThe remote Bitbucket server is affected by an Dierctory Traversal attack vector.
DescriptionVersions of Bitbucket 4.x prior to 4.8.2 contain a flaw in boundaries in content-type headers when handling file upload requests. This may allow a remote attacker to cause a process linked against the library to become unresponsive.
SolutionUpgrade to Bitbucket version 4.8.2 or later.