Uploaded image for project: 'PUBLIC - Liferay Portal Enterprise Edition'
  1. PUBLIC - Liferay Portal Enterprise Edition
  2. LPE-13444

Full server compromise using Filter mapping URL bypass

    Details

      Description

      Filter mappings are handled differently by portal and application server.

      An attacker can craft malicious URL to bypass portal API authentication filters and the malicious request may hit directly portal remote WS API without authentication.

      On Liferay portal versions <= 6.1 this leads to full compromise of the portal.

      On Liferay portal versions >= 6.2 there is a new authentication and authorization layer that prevents calls to most of services.

      This vulnerability can also make any customer security servlet filter ineffective and can potentially open new vulnerabilities.

      See also https://web.liferay.com/group/customer/products/portal/security-vulnerability/lsv-103

        Attachments

          Activity

            People

            • Assignee:
              bryan.engler Bryan Engler
              Reporter:
              tibor.lipusz Tibor Lipusz
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Packages

                Version Package
                6.1.X EE
                6.2.X EE