Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Summary | |
|---|---|
| Title | New drupal6 packages fix several vulnerabilities |
| Informations | |||
|---|---|---|---|
| Name | DSA-1930 | First vendor Publication | 2009-11-07 |
| Vendor | Debian | Last vendor Modification | 2009-11-07 |
| Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:S/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 6.5 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Low |
| Cvss Expoit Score | 8 | Authentication | Requires single instance |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Several vulnerabilities have been found in drupal6, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-2372 Gerhard Killesreiter discovered a flaw in the way user signatures are handled. It is possible for a user to inject arbitrary code via a crafted user signature. (SA-CORE-2009-007) CVE-2009-2373 Mark Piper, Sven Herrmann and Brandon Knight discovered a cross-site scripting issue in the forum module, which could be exploited via the tid parameter. (SA-CORE-2009-007) CVE-2009-2374 Sumit Datta discovered that certain drupal6 pages leak sensible information such as user credentials. (SA-CORE-2009-007) Several design flaws in the OpenID module have been fixed, which could lead to cross-site request forgeries or privilege escalations. Also, the file upload function does not process all extensions properly leading to the possible execution of arbitrary code. (SA-CORE-2009-008) For the stable distribution (lenny), these problems have been fixed in version 6.6-3lenny3. The oldstable distribution (etch) does not contain drupal6. For the testing distribution (squeeze) and the unstable distribution (sid), these problems have been fixed in version 6.14-1. We recommend that you upgrade your drupal6 packages. |
Original Source
| Url : http://www.debian.org/security/2009/dsa-1930 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 33 % | CWE-255 | Credentials Management |
| 33 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 33 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:13660 | |||
| Oval ID: | oval:org.mitre.oval:def:13660 | ||
| Title: | DSA-1930-1 drupal6 -- several vulnerabilities | ||
| Description: | Several vulnerabilities have been found in drupal6, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-2372 Gerhard Killesreiter discovered a flaw in the way user signatures are handled. It is possible for a user to inject arbitrary code via a crafted user signature. CVE-2009-2373 Mark Piper, Sven Herrmann and Brandon Knight discovered a cross-site scripting issue in the forum module, which could be exploited via the tid parameter. CVE-2009-2374 Sumit Datta discovered that certain drupal6 pages leak sensible information such as user credentials. Several design flaws in the OpenID module have been fixed, which could lead to cross-site request forgeries or privilege escalations. Also, the file upload function does not process all extensions properly leading to the possible execution of arbitrary code. For the stable distribution, these problems have been fixed in version 6.6-3lenny3. The oldstable distribution does not contain drupal6. For the testing distribution and the unstable distribution, these problems have been fixed in version 6.14-1. We recommend that you upgrade your drupal6 packages. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1930-1 CVE-2009-2372 CVE-2009-2373 CVE-2009-2374 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | drupal6 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:7333 | |||
| Oval ID: | oval:org.mitre.oval:def:7333 | ||
| Title: | DSA-1930 drupal6 -- several vulnerabilities | ||
| Description: | Several vulnerabilities have been found in drupal6, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following problems: Gerhard Killesreiter discovered a flaw in the way user signatures are handled. It is possible for a user to inject arbitrary code via a crafted user signature. (SA-CORE-2009-007) Mark Piper, Sven Herrmann and Brandon Knight discovered a cross-site scripting issue in the forum module, which could be exploited via the tid parameter. (SA-CORE-2009-007) Sumit Datta discovered that certain drupal6 pages leak sensitive information such as user credentials. (SA-CORE-2009-007) Several design flaws in the OpenID module have been fixed, which could lead to cross-site request forgeries or privilege escalations. Also, the file upload function does not process all extensions properly leading to the possible execution of arbitrary code. (SA-CORE-2009-008) The oldstable distribution (etch) does not contain drupal6. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1930 CVE-2009-2372 CVE-2009-2373 CVE-2009-2374 | Version: | 3 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | drupal6 |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-11-11 | Name : Debian Security Advisory DSA 1930-1 (drupal6) File : nvt/deb_1930_1.nasl |
| 2009-07-15 | Name : FreeBSD Ports: drupal5 File : nvt/freebsd_drupal513.nasl |
| 2009-07-15 | Name : Drupal Information Disclosure Vulnerability File : nvt/gb_drupal_info_disclosure_vuln.nasl |
| 2009-07-15 | Name : Drupal XSS and Code Injection Vulnerability File : nvt/gb_drupal_xss_n_code_inj_vuln.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 55525 | Drupal Core User Signature Format Weakness |
| 55524 | Drupal Core Forum Module Unspecified XSS Drupal Core Forum Module contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified parameter(s) upon submission to unspecified script(s). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-02-24 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1930.nasl - Type : ACT_GATHER_INFO |
| 2009-07-14 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_be9272986f9711deb444001372fd0af2.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:28:59 |
|
