Candidate: CVE-2015-5211 PublicDate: 2017-05-25 17:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5211 https://jira.spring.io/browse/SPR-13548 https://github.com/spring-projects/spring-framework/commit/2bd1da https://github.com/spring-projects/spring-framework/commit/a95c3d https://github.com/spring-projects/spring-framework/commit/03f547 https://pivotal.io/security/cve-2015-5211 Description: Under some situations, the Spring Framework 4.2.0 to 4.2.1, 4.0.0 to 4.1.7, 3.2.0 to 3.2.14 and older unsupported versions is vulnerable to a Reflected File Download (RFD) attack. The attack involves a malicious user crafting a URL with a batch script extension that results in the response being downloaded rather than rendered and also includes some input reflected in the response. Ubuntu-Description: Alvaro Muñoz discovered that Spring Framework incorrectly handled certain URLs. A remote attacker could possibly use this issue to cause a reflected file download. Notes: Bugs: Priority: medium Discovered-by: Assigned-to: CVSS: nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H [8.6 HIGH] Patches_libspring-java: upstream_libspring-java: released (4.1.9-1) precise_libspring-java: ignored (reached end-of-life) precise/esm_libspring-java: DNE (precise was needed) trusty_libspring-java: ignored (out of standard support) trusty/esm_libspring-java: needed vivid/stable-phone-overlay_libspring-java: DNE vivid/ubuntu-core_libspring-java: DNE wily_libspring-java: ignored (reached end-of-life) xenial_libspring-java: ignored (end of standard support, was needed) yakkety_libspring-java: ignored (reached end-of-life) zesty_libspring-java: ignored (reached end-of-life) artful_libspring-java: ignored (reached end-of-life) bionic_libspring-java: not-affected (4.3.14-1) cosmic_libspring-java: not-affected (4.3.14-1) disco_libspring-java: not-affected (4.3.14-1) eoan_libspring-java: not-affected (4.3.14-1) focal_libspring-java: not-affected (4.3.14-1) groovy_libspring-java: not-affected (4.3.14-1) hirsute_libspring-java: not-affected (4.3.14-1) impish_libspring-java: not-affected (4.3.14-1) jammy_libspring-java: not-affected (4.3.14-1) devel_libspring-java: not-affected (4.3.14-1)