Executive Summary
Summary | |
---|---|
Title | simplesamlphp security update |
Informations | |||
---|---|---|---|
Name | DSA-4127 | First vendor Publication | 2018-03-02 |
Vendor | Debian | Last vendor Modification | 2018-03-02 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Several vulnerabilities have been discovered in SimpleSAMLphp, a framework for authentication, primarily via the SAML protocol. CVE-2017-12867 Attackers with access to a secret token could extend its validity period by manipulating the prepended time offset. CVE-2017-12869 When using the multiauth module, attackers can bypass authentication context restrictions and use any authentication source defined in the config. CVE-2017-12873 Defensive measures have been taken to prevent the administrator from misconfiguring persistent NameIDs to avoid identifier clash. (Affects Debian 8 Jesse only.) CVE-2017-12874 The InfoCard module could accept incorrectly signed XML messages in rare occasions. CVE-2017-18121 The consentAdmin module was vulnerable to a Cross-Site Scripting attack, allowing an attacker to craft links that could execute arbitrary JavaScript code in the victim's browser. CVE-2017-18122 The (deprecated) SAML 1.1 implementation would regard as valid any unsigned SAML response containing more than one signed assertion, provided that the signature of at least one of the assertions was valid, allowing an attacker that could obtain a valid signed assertion from an IdP to impersonate users from that IdP. CVE-2018-6519 Regular expression denial of service when parsing extraordinarily long timestamps. CVE-2018-6521 Change sqlauth module MySQL charset from utf8 to utf8mb to prevent theoretical query truncation that could allow remote attackers to bypass intended access restrictions SSPSA-201802-01 (no CVE yet) Critical signature validation vulnerability. For the oldstable distribution (jessie), these problems have been fixed in version 1.13.1-2+deb8u1. For the stable distribution (stretch), these problems have been fixed in version 1.14.11-1+deb9u1. We recommend that you upgrade your simplesamlphp packages. For the detailed security status of simplesamlphp please refer to its security tracker page at: https://security-tracker.debian.org/tracker/simplesamlphp |
Original Source
Url : http://www.debian.org/security/2018/dsa-4127 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
29 % | CWE-20 | Improper Input Validation |
14 % | CWE-613 | Insufficient Session Expiration |
14 % | CWE-384 | Session Fixation |
14 % | CWE-347 | Improper Verification of Cryptographic Signature |
14 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
14 % | CWE-74 | Failure to Sanitize Data into a Different Plane ('Injection') |
CPE : Common Platform Enumeration
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-0ee228da17.nasl - Type : ACT_GATHER_INFO |
2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-85cb15befd.nasl - Type : ACT_GATHER_INFO |
2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-8cda2309d6.nasl - Type : ACT_GATHER_INFO |
2018-03-27 | Name : The remote Fedora host is missing a security update. File : fedora_2018-37e28670f2.nasl - Type : ACT_GATHER_INFO |
2018-03-27 | Name : The remote Fedora host is missing a security update. File : fedora_2018-6db40b0c37.nasl - Type : ACT_GATHER_INFO |
2018-03-27 | Name : The remote Fedora host is missing a security update. File : fedora_2018-96601292a2.nasl - Type : ACT_GATHER_INFO |
2018-03-27 | Name : The remote Fedora host is missing a security update. File : fedora_2018-d809bd2fd6.nasl - Type : ACT_GATHER_INFO |
2018-03-27 | Name : The remote Fedora host is missing a security update. File : fedora_2018-f2097d8937.nasl - Type : ACT_GATHER_INFO |
2018-03-27 | Name : The remote Fedora host is missing a security update. File : fedora_2018-f4ab4d96f9.nasl - Type : ACT_GATHER_INFO |
2018-03-05 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4127.nasl - Type : ACT_GATHER_INFO |
2018-02-09 | Name : The remote Debian host is missing a security update. File : debian_DLA-1273.nasl - Type : ACT_GATHER_INFO |
2017-12-13 | Name : The remote Debian host is missing a security update. File : debian_DLA-1205.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2018-03-02 09:18:50 |
|