[CONFSERVER-59428] Confluence on Windows was vulnerable to DLL hijacking - CVE-2019-20406 - Create and track feature requests for Atlassian products.

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 7.0.5, 7.1.1
Affects Version/s: all, 7.1.0
Component/s: Server - Installer / Setup
Labels:

Symptom Severity:
Severity 2 - Major
Bug Fix Policy:
View Atlassian Server bug fix policy

The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5, from version 7.1.0 before version 7.1.1 allows local system attackers who have permission to write a dll file in a directory in the global path environmental variable variable to inject code & escalate their privileges via a DLL hijacking vulnerability.

Acknowledgment

We would like to thank Peleg Hadar of SafeBreach Labs for reporting this vulnerability.

mentioned in: Page Failed to load; Page Failed to load; Page Failed to load

Adilson Carvalho (Inactive) made changes - 05/Nov/2020 7:10 AM

Remote Link

New: This issue links to "Page (Extranet)" [ 513678 ]

Richard Atkins made changes - 29/Jul/2020 3:15 AM

Fix Version/s

Original: 6.13.12 [ 91816 ]

Richard Atkins made changes - 29/Jul/2020 2:26 AM

Fix Version/s

New: 6.13.12 [ 91816 ]

Adilson Carvalho (Inactive) made changes - 29/Apr/2020 11:01 PM

Remote Link

New: This issue links to "Page (Extranet)" [ 481374 ]

Bruno Costa (Inactive) made changes - 20/Feb/2020 3:09 PM

Description

Original: The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5, from version 7.1.0 before version 7.1.1 allows local system attackers who have permission to write a dll file in a directory in the global path environmental variable variable to inject code & escalate their privileges via a DLL hijacking vulnerability.

New: The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5, from version 7.1.0 before version 7.1.1 allows local system attackers who have permission to write a dll file in a directory in the global path environmental variable variable to inject code & escalate their privileges via a DLL hijacking vulnerability.

h3. Acknowledgment

We would like to thank Peleg Hadar of SafeBreach Labs for reporting this vulnerability.

Bruno Costa (Inactive) made changes - 18/Feb/2020 1:16 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 471602 ]

David Black made changes - 06/Feb/2020 2:58 AM

Labels

Original: advisory advisory-to-release cvss-medium dll-hijacking security

New: advisory advisory-released cvss-medium dll-hijacking security

David Black made changes - 06/Feb/2020 2:58 AM

Security

Original: Reporter and Atlassian Staff [ 10751 ]

David Black made changes - 05/Feb/2020 2:54 AM

Security

New: Reporter and Atlassian Staff [ 10751 ]

David Black made changes - 05/Feb/2020 2:53 AM

Security

Original: Atlassian Staff [ 10750 ]

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Affected customers:: 0 This affects my team

Watchers:: 1 Start watching this issue

Created:: 04/Feb/2020 11:56 PM

Updated:: 05/Nov/2020 7:10 AM

Resolved:: 05/Feb/2020 2:50 AM

Details

Description

Acknowledgment

Attachments

Issue Links

Forms

Activity

[CONFSERVER-59428] Confluence on Windows was vulnerable to DLL hijacking - CVE-2019-20406

People

Dates