Apache Continuum saveInstallation.action command execution

Added: 06/15/2016

Background

Apache Continuum is a continuous integration server for Java projects.

Problem

A remote attacker could execute arbitrary commands by sending a POST request to saveInstallation.action with a specially crafted installation.varValue parameter.

Resolution

Upgrade to a version of Apache Continuum higher than 1.4.2 when available.

References

https://www.exploit-db.com/exploits/39886/

Limitations

Exploit works on Apache Continuum 1.4.2 running on Linux.
Back to exploit index