[LOGBACK-1593] sessionViaJNDI function of SMTPAppender may suffers from jndi injections - QOS.ch JIRA

XML

Word

Printable

Details

Type: Sub-task
Status: Open
Priority: Critical
Resolution: Unresolved
Affects Version/s: 1.2.8
Fix Version/s: None
Component/s: logback-classic, logback-core
Labels:
- smtpappender

Description

Hello friend! Similar to CVE-2021-4104, in logback's SMTPAppender, it is possible to override the configuration to enable sessionViaJNDI and specify jndiLocation as a malicious jndi server, leading to jndi injection and even RCE. more details in the attached pdf

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Attachments

poc.pdf
691 kB
16/Dec/21 6:49 AM

Activity

People

Assignee:: Ceki Gülcü

Reporter:: Diggid

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 16/Dec/21 6:49 AM

Updated:: 16/Dec/21 7:32 PM