#VU15972 Path traversal in Hadoop - CVE-2018-8009


| Updated: 2018-11-20

Vulnerability identifier: #VU15972

Vulnerability risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2018-8009

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Hadoop
Server applications / Frameworks for developing and running applications

Vendor: Apache Foundation

Description

The vulnerability allows a remote attacker to conduct a directory traversal attack on the target system.

The vulnerability exists due to improper validation of files inside an archive file. A remote unauthenticated attacker can trick the victim into extracting a zip file that contains files that use directory traversal characters, cause a malicious file to be created outside the current working directory and cause a denial of service (DoS) condition or execute arbitrary code by overwriting other files on the system.

Successful exploitation of the vulnerability may result in system compromise.

Note: the vulnerability has been dubbed "Zip Slip".

Mitigation
The vulnerability has been fixed in the versions 3.1.1, 3.0.3, 2.8.5, and 2.7.7.

Vulnerable software versions

Hadoop: 2.2 - 3.1.0

External links
http://hadoop.apache.org/cve_list.html#cve-2018-8009-http-cve-mitre-org-cgi-bin-cvename-cgi-name-cv...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Application Performance Management
Path traversal in IBM Cloud Pak for Multicloud Management Monitoring
Multiple vulnerabilities in IBM InfoSphere Information Server
Multiple vulnerabilities in IBM PureData System for Operational Analytics
Multiple vulnerabilities in Red Hat Fuse
Path traversal in Apache Hadoop