Description
The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0 in Apache Sling does not properly handle a NULL value that returned when the session does not have permissions to the root node, which allows remote attackers to cause a denial of service (infinite loop) via unspecified vectors.
Remediation
References
http://www.securityfocus.com/bid/62903
http://secunia.com/advisories/55157
http://mail-archives.apache.org/mod_mbox/sling-dev/201310.mbox/%3CCAKkCf4pue6PnESsP1KTdEDJm1gpkANFaK%2BvUd9mzEVT7tXL%2B3A%40mail.gmail.com%3E
https://issues.apache.org/jira/browse/SLING-2913
https://exchange.xforce.ibmcloud.com/vulnerabilities/87765
Related Vulnerabilities
CVE-2019-20364 Vulnerability in maven package org.igniterealtime.openfire:xmppserver
CVE-2011-2092 Vulnerability in maven package com.adobe.blazeds:blazeds-core
CVE-2019-10288 Vulnerability in maven package de.e-nexus:jabber-server-plugin
CVE-2021-4040 Vulnerability in maven package org.apache.activemq:artemis-core-client
CVE-2014-0035 Vulnerability in maven package org.apache.cxf:cxf-bundle