Vulnerabilities > CVE-2016-6793 - Deserialization of Untrusted Data vulnerability in Apache Wicket
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
HIGH Summary
The DiskFileItem class in Apache Wicket 6.x before 6.25.0 and 1.5.x before 1.5.17 allows remote attackers to cause a denial of service (infinite loop) and write to, move, and delete files with the permissions of DiskFileItem, and if running on a Java VM before 1.3.1, execute arbitrary code via a crafted serialized Java object.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- http://www.openwall.com/lists/oss-security/2016/12/31/1
- http://www.openwall.com/lists/oss-security/2016/12/31/1
- http://www.securityfocus.com/archive/1/539975/100/0/threaded
- http://www.securityfocus.com/archive/1/539975/100/0/threaded
- http://www.securityfocus.com/bid/95168
- http://www.securityfocus.com/bid/95168
- http://www.securitytracker.com/id/1037541
- http://www.securitytracker.com/id/1037541
- https://wicket.apache.org/news/2016/12/31/cve-2016-6793.html
- https://wicket.apache.org/news/2016/12/31/cve-2016-6793.html
- https://www.tenable.com/security/research/tra-2016-23
- https://www.tenable.com/security/research/tra-2016-23