CVE-2011-4367
published 2014-06-19CVE-2011-4367: Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 allow remote…
PriorityP347medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
33.47%
98.2th percentile
Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) ln parameter to faces/javax.faces.resource/web.xml or (2) the PATH_INFO to faces/javax.faces.resource/.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | myfaces | 2.0.1 – 2.0.11 | — |
| apache | myfaces | 2.1.0 – 2.1.5 | — |
| debian | mojarra | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect directory traversal attempts targeting the Apache MyFaces resource servlet via the 'ln' query parameter containing '..' sequences (both forward-slash and backslash variants). ↗
- →Monitor HTTP requests where PATH_INFO to 'faces/javax.faces.resource/' contains '..' traversal sequences, which can be used to read arbitrary files. ↗
- ·Vulnerability affects Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 only; versions outside this range are not affected. ↗
- ·Red Hat JBoss EAP 6, EAP 7, Fuse 6, BPM Suite 6, Decision Manager 7, and Process Automation 7 packages of MyFaces are confirmed not affected. ↗
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Apache MyFaces Vulnerable to Path Traversal
osv·2022-05-13
CVE-2011-4367 [MEDIUM] Apache MyFaces Vulnerable to Path Traversal
Apache MyFaces Vulnerable to Path Traversal
Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 allow remote attackers to read arbitrary files via a `..` (dot dot) in the (1) ln parameter to `faces/javax.faces.resource/web.xml` or (2) the `PATH_INFO` to `faces/javax.faces.resource/`.
GHSA
Apache MyFaces Vulnerable to Path Traversal
ghsa·2022-05-13
CVE-2011-4367 [MEDIUM] CWE-22 Apache MyFaces Vulnerable to Path Traversal
Apache MyFaces Vulnerable to Path Traversal
Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 allow remote attackers to read arbitrary files via a `..` (dot dot) in the (1) ln parameter to `faces/javax.faces.resource/web.xml` or (2) the `PATH_INFO` to `faces/javax.faces.resource/`.
Red Hat
MyFaces: multiple directory traversal vulnerabilities allow remote attackers to read arbitrary files
vendor_redhat·2020-08-05·CVSS 5.0
CVE-2011-4367 [MEDIUM] CWE-200 MyFaces: multiple directory traversal vulnerabilities allow remote attackers to read arbitrary files
MyFaces: multiple directory traversal vulnerabilities allow remote attackers to read arbitrary files
Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) ln parameter to faces/javax.faces.resource/web.xml or (2) the PATH_INFO to faces/javax.faces.resource/.
Package: MyFaces (Red Hat BPM Suite 6) - Not affected
Package: MyFaces (Red Hat Decision Manager 7) - Not affected
Package: MyFaces (Red Hat JBoss Enterprise Application Platform 6) - Not affected
Package: MyFaces (Red Hat JBoss Enterprise Application Platform 7) - Not affected
Package: MyFaces (Red Hat JBoss Enterprise Application Platform Continuous Delivery) - N
Debian
CVE-2011-4367: mojarra - Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) i...
vendor_debian·2011·CVSS 5.0
CVE-2011-4367 [MEDIUM] CVE-2011-4367: mojarra - Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) i...
Multiple directory traversal vulnerabilities in MyFaces JavaServer Faces (JSF) in Apache MyFaces Core 2.0.x before 2.0.12 and 2.1.x before 2.1.6 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) ln parameter to faces/javax.faces.resource/web.xml or (2) the PATH_INFO to faces/javax.faces.resource/.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
Suricata
ET WEB_SPECIFIC_APPS Awstats Apache Tomcat Configuration File Remote Arbitrary Command Execution Attempt
suricata·2011-03-01
CVE-2010-4367 ET WEB_SPECIFIC_APPS Awstats Apache Tomcat Configuration File Remote Arbitrary Command Execution Attempt
ET WEB_SPECIFIC_APPS Awstats Apache Tomcat Configuration File Remote Arbitrary Command Execution Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Awstats Apache Tomcat Configuration File Remote Arbitrary Command Execution Attempt"; flow:established,to_server; http.uri; content:"awstats.cgi"; nocase; content:"config="; nocase; content:"pluginmode=rawlog"; nocase; content:"configdir=|5C 5C|"; nocase; fast_pattern; reference:bid,45123; reference:cve,2010-4367; classtype:web-application-attack; sid:2012393; rev:4; metadata:created_at 2011_03_01, cve CVE_2010_4367, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_09_13;)
http://mail-archives.apache.org/mod_mbox/myfaces-announce/201202.mbox/%3C4F33ED1F.4070007%40apache.org%3Ehttp://osvdb.org/show/osvdb/79002http://seclists.org/fulldisclosure/2012/Feb/150http://secunia.com/advisories/47973http://www.securityfocus.com/bid/51939https://exchange.xforce.ibmcloud.com/vulnerabilities/73100http://mail-archives.apache.org/mod_mbox/myfaces-announce/201202.mbox/%3C4F33ED1F.4070007%40apache.org%3Ehttp://osvdb.org/show/osvdb/79002http://seclists.org/fulldisclosure/2012/Feb/150http://secunia.com/advisories/47973http://www.securityfocus.com/bid/51939https://exchange.xforce.ibmcloud.com/vulnerabilities/73100
2014-06-19
Published