Loading...

This issue belongs to an archived project. You can view it, but you can't modify it. Learn more

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Highest
Fix Version/s: None
Affects Version/s: None
Component/s: Other
Labels:

Description

HipChat Server used a vulnerable version of the ImageMagick library without restricting coders. Attackers who can log in can use the ImageMagick vulnerabilities in vulnerable versions of HipChat Server to:

Execute remote code of their choice
Delete files that the www-data user has permission to delete
Move files that the www-data user has permission to move
Read files that the www-data user has permission to read
Make http requests to local and internal services

To exploit this issue, attackers need to have a valid account in a vulnerable HipChat Server instance.

Affected versions:

All versions of HipChat Server before version 2.0 build 1.4.1 are vulnerable.

Fix:

Upgrade HipChat Server to version 2.0 build 1.4.1 or higher by following the instructions found at Upgrading HipChat Server.

For additional details see the full advisory.

Attachments

Issue Links

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: David Black

Archiver:: Michael Andreacchio

Dates

Created:: 06/May/2016 7:09 AM

Updated:: 11/Jul/2016 4:15 PM

Resolved:: 07/May/2016 5:19 AM

Archived:: 16/Jun/2020 5:19 AM