Apex Software LiveBOS UploadFile.do Path Traversal Vulnerability Allowing Arbitrary File Upload and Remote Code Execution
Vulnerability
A path traversal vulnerability allowing arbitrary file uploads has been identified in the LiveBOS middleware suite by Apex Software. This issue is present in the UploadFile.do;.js.jsp endpoint of the LiveBOS Server component, affecting versions prior to August 2024. The vulnerability allows unauthenticated remote attackers to upload malicious files outside the designated directory structure, potentially leading to remote code execution on the server.
Impact
Successful exploitation of this vulnerability allows for arbitrary file uploads, which can be leveraged to execute malicious code on the server, resulting in a full system compromise.
Reproduction
To reproduce this vulnerability, send a POST request to the UploadFile.do;.js.jsp endpoint with a crafted filename that includes path traversal sequences. The request must be sent as multipart/form-data, with the file parameter containing a file that exploits the vulnerability, such as a JSP file with embedded code.
Remediation
Users are advised to upgrade to the latest version of LiveBOS, as the vulnerability has been addressed in builds released after August 2024.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.