Denial of Service Vulnerability in Apache Wicket by The Apache Software Foundation
CVE-2016-6793

9.1CRITICAL

Key Information:

Vendor
Apache
Status
Wicket
Vendor
CVE Published:
17 July 2017

Summary

The DiskFileItem class in Apache Wicket versions 6.x before 6.25.0 and 1.5.x before 1.5.17 contains a vulnerability that allows remote attackers to initiate a denial of service through an infinite loop. Additionally, it enables unauthorized file operations, including writing, moving, and deletion of files using the permissions of DiskFileItem. If the application is running on a Java Virtual Machine version prior to 1.3.1, this vulnerability could also lead to the execution of arbitrary code through crafted serialized Java objects.

References

http://www.securitytracker.com/id/1037541
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/archive/1/539975/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.openwall.com/lists/oss-security/2016/12/31/1
mailing-listx_refsource_MLIST

EPSS Score

16% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.