exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

JobScheduler XML eXternal Entity Injection

JobScheduler XML eXternal Entity Injection
Posted Sep 8, 2014
Authored by Christian Schneider | Site christian-schneider.net

JobScheduler versions prior to 1.7.4241 suffer from an XML external entity injection vulnerability.

tags | advisory, xxe
advisories | CVE-2014-5392
SHA-256 | 40fe0246e1c67d5e7933e033572c8b33f807c11ecad0185a3406b997503ac03f

JobScheduler XML eXternal Entity Injection

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


CVE-2014-5392
===================
"XML eXternal Entity (XXE)" (CWE-611) vulnerability in "JobScheduler" product


Vendor
===================
Software- & Organisations-Service GmbH


Product
===================
"JobScheduler is a workload automation tool. It is used to launch JobScheduler objects,
such as jobs and/or orders, at the occurrence of time, file or calendar events. JobScheduler
was recognised in 2012 by Gartner Inc. with a placement in their Magic Quadrant for workload
automation. JobScheduler provides solutions from simple to complex scheduling scenarios.
It is available with an open source or a commercial licence."
- source: http://www.sos-berlin.com/modules/cjaycontent/index.php?id=osource_scheduler_introduction_en.htm


Affected versions
===================
This vulnerability affects versions of JobScheduler prior to 1.7.4241
as well as versions prior to 1.6.4246.


Patch
===================
The vendor has released patches for versions 1.7.x and 1.6.x at
http://www.sos-berlin.com/modules/news/article.php?storyid=73
http://www.sos-berlin.com/modules/news/article.php?storyid=74


Reported by
===================
This issue was reported to the vendor by Christian Schneider (@cschneider4711)
following a responsible disclosure process.


Severity
===================
High


Description
===================
Using a specially crafted request to access the web interface of JobScheduler it is possible
to cause denial of service situations as well as list directories and contents of (sensitive)
files from the filesystem of the server which has the JobScheduler web interface installed.


Proof of concept
===================
Due to the responsible disclosure process chosen and to not harm unpatched systems,
no concrete exploit code will be presented in this advisory.


References
===================
http://www.sos-berlin.com/modules/news/article.php?storyid=73
http://www.sos-berlin.com/modules/news/article.php?storyid=74
http://www.christian-schneider.net/advisories/CVE-2014-5392.txt

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)

iEYEARECAAYFAlQMj9cACgkQXYAsOfddvFOj9QCgg/hPe645bRJD8ZZ2E1yIWBMZ
rQQAnR9gZq7TOhZZxAD6tbZ3WHfsqjDq
=HlF4
-----END PGP SIGNATURE-----
Login or Register to add favorites

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close