Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-6632

Applications may be able to use StorageFactoryService to delete Derby databases and overwrite service.properties.

    XMLWordPrintableJSON

    Details

    • Urgency:
      Normal
    • Bug behavior facts:
      Data corruption, Security

      Description

      Various powerful methods in StorageFactoryService are public. I have not verified the following with an experiment, but it appears to me that these methods give any code running in the JVM the ability to elevate privileges to those granted to Derby and do the following:

      1) Delete Derby databases via the following methods:

      org.apache.derby.impl.services.monitor.StorageFactoryService createServiceRoot()
      org.apache.derby.impl.services.monitor.StorageFactoryService getServiceProperties()
      org.apache.derby.impl.services.monitor.StorageFactoryService getStorageFactoryInstance()
      org.apache.derby.impl.services.monitor.StorageFactoryService removeServiceRoot()
      

      2) Overwrite service.properties via overloads of the following method:

      org.apache.derby.impl.services.monitor.StorageFactoryService createServiceRoot()
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                rhillegas Richard N. Hillegas
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: