[CONFSERVER-59428] Confluence on Windows was vulnerable to DLL hijacking - CVE-2019-20406 - Create and track feature requests for Atlassian products.

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 7.0.5, 7.1.1
Affects Version/s: all, 7.1.0
Component/s: Server - Installer / Setup
Labels:

Symptom Severity:
Severity 2 - Major
Bug Fix Policy:
View Atlassian Server bug fix policy

The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5, from version 7.1.0 before version 7.1.1 allows local system attackers who have permission to write a dll file in a directory in the global path environmental variable variable to inject code & escalate their privileges via a DLL hijacking vulnerability.

Acknowledgment

We would like to thank Peleg Hadar of SafeBreach Labs for reporting this vulnerability.

mentioned in: Page Failed to load; Page Failed to load; Page Failed to load

David Sumlin added a comment - 22/Jul/2020 2:20 PM - edited

Why isn't the Long Term Support version 6.13.x being updated to address this vulnerability? I thought that was the whole promise of the Long Term Support concept?

David Sumlin added a comment - 22/Jul/2020 2:20 PM - edited Why isn't the Long Term Support version 6.13.x being updated to address this vulnerability? I thought that was the whole promise of the Long Term Support concept?

Security Metrics Bot added a comment - 04/Feb/2020 11:56 PM

This is an independent assessment and you should evaluate its applicability to your own IT environment.
CVSS v3 score: 6.7 => Medium severity

Exploitability Metrics

Attack Vector	Local
Attack Complexity	High
Privileges Required	Low
User Interaction	Required

Scope Metric

Scope	Unchanged

Impact Metrics

Confidentiality	High
Integrity	High
Availability	High

https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Security Metrics Bot added a comment - 04/Feb/2020 11:56 PM This is an independent assessment and you should evaluate its applicability to your own IT environment. CVSS v3 score: 6.7 => Medium severity Exploitability Metrics Attack Vector Local Attack Complexity High Privileges Required Low User Interaction Required Scope Metric Scope Unchanged Impact Metrics Confidentiality High Integrity High Availability High https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Affected customers:: 0 This affects my team

Watchers:: 1 Start watching this issue

Created:: 04/Feb/2020 11:56 PM

Updated:: 05/Nov/2020 7:10 AM

Resolved:: 05/Feb/2020 2:50 AM

Details

Description

Acknowledgment

Attachments

Issue Links

Forms

Activity

[CONFSERVER-59428] Confluence on Windows was vulnerable to DLL hijacking - CVE-2019-20406

Collapse comment: David Sumlin added a comment - 22/Jul/2020 2:20 PM, Edited by David Sumlin - 22/Jul/2020 2:23 PM

Expand comment: David Sumlin added a comment - 22/Jul/2020 2:20 PM, Edited by David Sumlin - 22/Jul/2020 2:23 PM

Collapse comment: Security Metrics Bot added a comment - 04/Feb/2020 11:56 PM

Expand comment: Security Metrics Bot added a comment - 04/Feb/2020 11:56 PM

People

Dates