Executive Summary

Summary
Title conga security update
Informations
Name RHSA-2011:0393 First vendor Publication 2011-03-28
Vendor RedHat Last vendor Modification 2011-03-28
Severity (Vendor) Important Revision 01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated conga packages that fix one security issue are now available for Red Hat Cluster Suite 4.

The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

2. Relevant releases/architectures:

Red Hat Cluster Suite 4AS - i386, ia64, ppc, x86_64 Red Hat Cluster Suite 4ES - i386, ia64, x86_64 Red Hat Cluster Suite 4WS - i386, ia64, x86_64

3. Description:

The conga packages provide a web-based administration tool for remote cluster and storage management.

A privilege escalation flaw was found in luci, the Conga web-based administration application. A remote attacker could possibly use this flaw to obtain administrative access, allowing them to read, create, or modify the content of the luci application. (CVE-2011-0720)

Users of Conga are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. After installing the updated packages, luci must be restarted ("service luci restart") for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

676961 - CVE-2011-0720 plone: unauthorized remote administrative access

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2011-0393.html

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:21642
 
Oval ID: oval:org.mitre.oval:def:21642
Title: RHSA-2011:0394: conga security update (Important)
Description: Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain administrative access, read or create arbitrary content, and change the site skin via unknown vectors.
Family: unix Class: patch
Reference(s): RHSA-2011:0394-01
CESA-2011:0394
CVE-2011-0720
 Version: 4
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
 Product(s): conga
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23191
 
Oval ID: oval:org.mitre.oval:def:23191
Title: ELSA-2011:0394: conga security update (Important)
Description: Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain administrative access, read or create arbitrary content, and change the site skin via unknown vectors.
Family: unix Class: patch
Reference(s): ELSA-2011:0394-01
CVE-2011-0720
 Version: 6
Platform(s): Oracle Linux 5
 Product(s): conga
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27585
 
Oval ID: oval:org.mitre.oval:def:27585
Title: DEPRECATED: ELSA-2011-0394 -- conga security update (important)
Description: [0.12.2-24.0.1.el5_6.1] - Added conga-enterprise.patch - Added conga-enterprise-Carthage.patch to support OEL5 - Recreated Data.fs in luci_db.tar.gz - Replaced redhat logo image in conga-0.12.2.tar.gz [0.12.2-24.1] - Fix bz680515 (CVE-2011-0720 plone: unauthorized remote administrative access)
Family: unix Class: patch
Reference(s): ELSA-2011-0394
CVE-2011-0720
 Version: 4
Platform(s): Oracle Linux 5
 Product(s): conga
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 32
Application 1
Application 1

OpenVAS Exploits

Date Description
2012-07-30 Name : CentOS Update for luci CESA-2011:0394 centos5 x86_64
File : nvt/gb_CESA-2011_0394_luci_centos5_x86_64.nasl
2011-08-09 Name : CentOS Update for luci CESA-2011:0394 centos5 i386
File : nvt/gb_CESA-2011_0394_luci_centos5_i386.nasl
2011-03-05 Name : FreeBSD Ports: plone
File : nvt/freebsd_plone3.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
70753 Plone Unspecified Remote Privilege Escalation

Plone contains an unspecified flaw that may allow a remote attacker to gain administrative privileges and modify the site. No further details have been provided.

Nessus® Vulnerability Scanner

Date Description
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0394.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-0394.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110328_conga_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110329_conga_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2011-09-06 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_7c492ea2356611e08e810022190034c0.nasl - Type : ACT_GATHER_INFO
2011-04-25 Name : The remote web server has an application that that is affected by a security ...
File : plone_authentication_bypass.nasl - Type : ACT_ATTACK
2011-04-21 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2011-0394.nasl - Type : ACT_GATHER_INFO