CVE-2015-5248: Input Validation
First published: Fri Oct 16 2015(Updated: )
A vulnerability was discovered in the Red Hat Mobile platform allowing a malicious attacker to utilize service for a reflected download attack. An attacker can craft a URL pointing to a file of their choosing that will, in certain browsers, appear to be downloaded from the Red Hat Mobile platform itself. Such a URL could be used in---for example---a spoof or spear-phishing e-mail to capitalize on user trust. Acknowledgements: Red Hat would like to thank Maciej Grela of Trustwave for reporting this issue.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Mobile Application Platform |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.redhat.com/
- https://example.feedhenry.com/box/srv/1.1/app/init/install.cmd?_callback=start%20notepad.exe%0d%0a&_jsonpdata
- https://debug-url.feedhenry.net
- https://release-url.feedhenry.net
- https://www.trustwave.com/Resources/SpiderLabs-Blog/Reflected-File-Download---A-New-Web-Attack-Vector/
- https://www.blackhat.com/docs/eu-14/materials/eu-14-Hafif-Reflected-File-Download-A-New-Web-Attack-Vector.pdf
- https://www.modern.ie/en-us/virtualization-tools
- https://www.trustwave.com
- https://www.trustwave.com/spiderlabs
- https://bugzilla.redhat.com/show_bug.cgi?id=1272326
- https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-017/?fid=7150
Frequently Asked Questions
What is the severity of CVE-2015-5248?
CVE-2015-5248 is classified as a high severity vulnerability due to the potential for reflected download attacks.
How do I fix CVE-2015-5248?
To mitigate CVE-2015-5248, it is recommended to update to the latest version of the Red Hat Mobile Application Platform.
What causes CVE-2015-5248?
CVE-2015-5248 is caused by improper handling of URLs that can allow attackers to craft links for malicious file downloads.
Who is affected by CVE-2015-5248?
CVE-2015-5248 affects users of the Red Hat Mobile Application Platform, specifically in environments where the service is misconfigured.
What types of attacks can CVE-2015-5248 enable?
CVE-2015-5248 can enable reflected download attacks, allowing attackers to trick users into downloading malicious files.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/references
- agent/author
- agent/weakness
- agent/event
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2015-5248
- agent/trending
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- agent/source
- vendor/redhat
- canonical/red hat mobile application platform