[TYPO3-UG Russia] Fwd: [TYPO3-announce] TYPO3 Security Bulletin 20070919-1: Multiple vulnerabilities in extension mm_forum
Michael Shigorin
mike at osdn.org.ua
Wed Sep 19 15:35:38 CEST 2007
[beeep]
PS: ещё 0.1.2 в тестовом режиме замечено за _периодическим_
выкидыванием сайта, работающего на PHP4/MySQL4, в белый экран
(всех страниц). Тестодром микроскопический, эффект чинится
отключением mm_forum, поэтому пока думаю проверить на 5/5 и
если получится воспроизвести -- вешать подземный стук.
В остальном, конечно, интересный экстеншн. Особенно когда
фигурирующую в TODO возможность несколько инстансов в дерево
сажать сделают.
----- Forwarded message from Lars Houmark <lars/typo3.org> -----
Date: Wed, 19 Sep 2007 15:20:44 +0200
From: Lars Houmark <lars/typo3.org>
To: TYPO3 Announce List <typo3-announce/lists.netfielders.de>
Subject: [TYPO3-announce] TYPO3 Security Bulletin 20070919-1: Multiple vulnerabilities in extension mm_forum
Dear users of TYPO3,
It has been discovered that the extension mm_forum is vulnerable to
multiple SQL Injection attacks and multiple XSS flaws alongside other
vulnerabilities.
==== Component Type ====
Third party extension. This extension is not part of the TYPO3
default installation.
==== Affected Versions ====
Version 0.1.2 and all versions below.
==== Vulnerability Type ====
SQL Injection, Cross Site Scripting.
==== Severity ====
HIGH
==== Problem Description ====
The extension is open to multiple SQL injections and Cross Site
Scripting flaws because it fails to properly sanitize user-supplied
input.
Please note that the TYPO3 Security Team has not done a complete
review of the extension, due to lack of time and funding for this.
Please contact the TYPO3 Security Team if you are able to donate
money to our work, i.e. reviewing this extension.
==== Solution ====
An updated version is available from the TYPO3 extension manager and at
http://typo3.org/extensions/repository/view/mm_forum/0.1.3/
==== General advice ====
Follow the recommendations that are given in the TYPO3 Security
Cookbook [1].
Keep notice of the TYPO3 security bulletin page at [2].
==== Credits ====
The TYPO3 Security Team wishes to thank the guys at Mittwald CM
Service. After being informed by the TYPO3 Security Team about the
presence of multiple security issues, they have fixed the issues
quickly, and also reviewed the full code of mm_forum, to eliminate
further security issues.
[1] http://typo3.org/fileadmin/security-team/
typo3_security_cookbook_v-0.5.pdf
[2] http://typo3.org/teams/security/security-bulletins/
Regards,
Lars Houmark
lars/typo3.org
_______________________________________________
TYPO3-announce mailing list
TYPO3-announce/lists.netfielders.de
http://lists.netfielders.de/cgi-bin/mailman/listinfo/typo3-announce
----- End forwarded message -----
--
---- WBR, Michael Shigorin <mike at altlinux.ru>
------ Linux.Kiev http://www.linux.kiev.ua/
More information about the TYPO3-russia
mailing list