CVE-2012-4834 : Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2

Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote attackers to read arbitrary files via a crafted URI.

Published 2012-11-30 19:55:01

Updated 2018-12-04 17:36:27

Source IBM Corporation

View at NVD, CVE.org

Vulnerability category: Directory traversal

Exploit prediction scoring system (EPSS) score for CVE-2012-4834

Probability of exploitation activity in the next 30 days: 0.27%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 63 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-4834

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2012-4834

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-4834

http://www.ibm.com/connections/blogs/PSIRT/entry/security_vulnerability_in_theme_component_for_websphere_portal_versions_7_0_0_x_and_8_0_cve2012_48344

IBM notice: The page you requested cannot be displayed
Patch;Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/78914

IBM WebSphere Portal directory traversal CVE-2012-4834 Vulnerability Report
Third Party Advisory;VDB Entry
http://www.ibm.com/support/docview.wss?uid=swg24033155

Fixes integrated in WebSphere Portal 8.0.0.0 Cumulative Fixes
Patch;Third Party Advisory
http://www.ibm.com/support/docview.wss?uid=swg21617713

Security Bulletin: Security vulnerability in theme component for WebSphere Portal versions 7.0.0.x and 8.0 (CVE-2012-4834)
Patch;Vendor Advisory

Products affected by CVE-2012-4834

IBM » Websphere Portal » Version: 8.0.0.0
cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf002
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf002:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf003
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf003:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf004
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf004:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf005
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf005:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:*:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf013
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf013:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf014
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf014:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf015
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf015:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf016
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf016:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf017
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf017:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf012
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf012:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf013
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf013:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf014
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf014:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf015
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf015:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf009
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf009:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf011
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf011:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf018
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf018:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf002
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf002:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf009
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf009:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf011
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf011:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf016
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf016:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf018
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf018:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 8.0.0.0 Update Cf01
cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf01:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf006
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf006:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf007
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf007:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf008
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf008:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf004
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf004:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf005
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf005:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf006
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf006:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf007
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf007:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 8.0.0.0 Update Cf02
cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf02:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf010
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf010:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.1 Update Cf012
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf012:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf003
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf003:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf008
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf008:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf010
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf010:*:*:*:*:*:*
Matching versions
IBM » Websphere Portal » Version: 7.0.0.2 Update Cf017
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf017:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2012-4834

Exploit prediction scoring system (EPSS) score for CVE-2012-4834

CVSS scores for CVE-2012-4834

CWE ids for CVE-2012-4834

References for CVE-2012-4834

Products affected by CVE-2012-4834