Ignite Realtime Openfire未明特权提升漏洞

Ignite Realtime Openfire是一款实时协作服务程序。 Ignite Realtime Openfire存在多个问题，远程攻击者可以利用漏洞提升特权。 漏洞允许恶意用户通过内置的管理控制台上传代码到Openfire而执行任意指令。目前没有详细漏洞细节提供。 Ignite Realtime Openfire 3.3 升级程序： Ignite Realtime Openfire 3.3 * Ignite Realtime openfire-3.3.1-1.i386.rpm <a href="http://www.igniterealtime.org/downloads/download-landing.jsp?file=open" target="_blank">http://www.igniterealtime.org/downloads/download-landing.jsp?file=open</a> fire/openfire-3.3.1-1.i386.rpm * Ignite Realtime openfire_3_3_1.dmg <a href="http://www.igniterealtime.org/downloads/download-landing.jsp?file=open" target="_blank">http://www.igniterealtime.org/downloads/download-landing.jsp?file=open</a> fire/openfire_3_3_1.dmg * Ignite Realtime openfire_3_3_1.exe <a href="http://www.igniterealtime.org/downloads/download-landing.jsp?file=open" target="_blank">http://www.igniterealtime.org/downloads/download-landing.jsp?file=open</a> fire/openfire_3_3_1.exe