[TYPO3] TYPO3 Security Bulletin TYPO3-20070608-1: SQL injection in macina_banners / ric_rotation

Lars Houmark lars at houmark.com
Mon Jun 11 14:24:49 CEST 2007


Dear users of TYPO3,

Several SQL Injections has been discovered in the extensions macina_banners
and its descendant ric_rotation.

==== Component Type ====
Third party extensions. These extensions is not part of the TYPO3 default
installation

==== Affected Versions ====
Affected is macina_banners (version 1.4.0 and below)
and its descendant ric_rotation (version 1.9.9 and below).
For clarification: ww_macinabanners is not affected.

==== Vulnerability Type ====
SQL Injection

==== Severity ====
HIGH (exploitations have been reported, so it is supposed to be "in the
wild")

==== Problem Description ====
These extensions are exposed to an SQL injection issue because it fails to
properly sanitize user-supplied input.

==== Solution ====
Updated versions are available from the TYPO3 extension manager and at
typo3.org/extensions/repository/view/macina_banners/1.4.1/
and
typo3.org/extensions/repository/view/ric_rotation/1.9.10/
Users of these extensions are strongly advised to update the extension
immediately.

==== General advice ====
Follow the recommendations that are given in the TYPO3 Security Cookbook.

==== Credits ====
Credits go to Jan Radecker who discovered this issue and to Wolfgang Becker
and Clemens Riccabona who immediately fixed their extensions.

You can view the entire bulletin page here at the below address:
http://typo3.org/teams/security/security-bulletins/typo3-20070608-1/


Regards,

Lars Houmark
TYPO3 Security Team



More information about the TYPO3-english mailing list