CVE-2013-1777: Code Injection
First published: Thu Jul 11 2013(Updated: )
The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server (WAS) Community Edition 3.0.0.3 and other products, does not properly implement the RMI classloader, which allows remote attackers to execute arbitrary code by using the JMX connector to send a crafted serialized object.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.apache.geronimo.framework:geronimo-jmx-remoting | >=3.0-beta-1<3.0.1 | 3.0.1 |
| Red Hat Geronimo | =3.0 | |
| Red Hat Geronimo | =3.0-beta1 | |
| Red Hat Geronimo | =3.0-m1 | |
| IBM WebSphere Application Server Feature Pack for Web Services | =3.0.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/bugtraq/2013-07/0008.html
- http://geronimo.apache.org/30x-security-report.html
- http://www-01.ibm.com/support/docview.wss?uid=swg21643282
- https://issues.apache.org/jira/browse/GERONIMO-6477
- https://nvd.nist.gov/vuln/detail/CVE-2013-1777
- http://svn.apache.org/viewvc/geronimo/server/trunk
- http://svn.apache.org/viewvc?view=revision&revision=1458113
- https://github.com/apache/geronimo/commit/ee031c5e62b0d358250d06c2aa6722518579a6c5
- https://github.com/advisories/GHSA-v64w-96p6-fx7w (Advisory)
Frequently Asked Questions
What is the severity of CVE-2013-1777?
CVE-2013-1777 is considered a critical vulnerability due to its potential for remote code execution.
How do I fix CVE-2013-1777?
To fix CVE-2013-1777, update Apache Geronimo to version 3.0.1 or later.
Which versions of Apache Geronimo are affected by CVE-2013-1777?
Apache Geronimo versions 3.0, 3.0-beta1, and 3.0-m1 are affected by CVE-2013-1777.
Is IBM WebSphere Application Server affected by CVE-2013-1777?
Yes, IBM WebSphere Application Server version 3.0.0.3 Community Edition is affected by CVE-2013-1777.
What is the nature of the vulnerability in CVE-2013-1777?
CVE-2013-1777 allows remote attackers to execute arbitrary code by exploiting improper RMI classloader implementation in JMX Remoting.
- agent/type
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-v64w-96p6-fx7w
- alias/CVE-2013-1777
- agent/software-canonical-lookup
- agent/weakness
- agent/remedy
- agent/severity
- agent/references
- agent/description
- agent/author
- collector/github-advisory
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/maven
- vendor/apache
- canonical/red hat geronimo
- version/red hat geronimo/3.0
- version/red hat geronimo/3.0-beta1
- version/red hat geronimo/3.0-m1
- vendor/ibm
- canonical/ibm websphere application server feature pack for web services
- version/ibm websphere application server feature pack for web services/3.0.0.3