CVE-2015-5210

描述

Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.

受影響套件(1)

• Maven/org.apache.ambari:ambari>= 1.7.0, < 2.1.2

參考連結(3)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2015-5210
• WEBhttps://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.1.2
• WEBhttp://www.openwall.com/lists/oss-security/2015/10/13/4