[TYPO3-UG Russia] Fwd: [TYPO3-announce] TYPO3 Security Bulletin 20070919-1: Multiple vulnerabilities in extension mm_forum

Michael Shigorin mike at osdn.org.ua
Wed Sep 19 15:35:38 CEST 2007 

[beeep]

PS: ещё 0.1.2 в тестовом режиме замечено за _периодическим_
выкидыванием сайта, работающего на PHP4/MySQL4, в белый экран
(всех страниц).  Тестодром микроскопический, эффект чинится
отключением mm_forum, поэтому пока думаю проверить на 5/5 и 
если получится воспроизвести -- вешать подземный стук.

В остальном, конечно, интересный экстеншн.  Особенно когда
фигурирующую в TODO возможность несколько инстансов в дерево
сажать сделают.

----- Forwarded message from Lars Houmark <lars/typo3.org> -----

Date: Wed, 19 Sep 2007 15:20:44 +0200
From: Lars Houmark <lars/typo3.org>
To: TYPO3 Announce List <typo3-announce/lists.netfielders.de>
Subject: [TYPO3-announce] TYPO3 Security Bulletin 20070919-1: Multiple vulnerabilities in extension mm_forum

Dear users of TYPO3,

It has been discovered that the extension mm_forum is vulnerable to  
multiple SQL Injection attacks and multiple XSS flaws alongside other  
vulnerabilities.

==== Component Type ====
Third party extension. This extension is not part of the TYPO3  
default installation.

==== Affected Versions ====
Version 0.1.2 and all versions below.

==== Vulnerability Type ====
SQL Injection, Cross Site Scripting.

==== Severity ====
HIGH

==== Problem Description ====
The extension is open to multiple SQL injections and Cross Site  
Scripting flaws because it fails to properly sanitize user-supplied  
input.

Please note that the TYPO3 Security Team has not done a complete  
review of the extension, due to lack of time and funding for this.

Please contact the TYPO3 Security Team if you are able to donate  
money to our work, i.e. reviewing this extension.

==== Solution ====
An updated version is available from the TYPO3 extension manager and at
http://typo3.org/extensions/repository/view/mm_forum/0.1.3/

==== General advice ====
Follow the recommendations that are given in the TYPO3 Security  
Cookbook [1].
Keep notice of the TYPO3 security bulletin page at [2].

==== Credits ====
The TYPO3 Security Team wishes to thank the guys at Mittwald CM  
Service. After being informed by the TYPO3 Security Team about the  
presence of multiple security issues, they have fixed the issues  
quickly, and also reviewed the full code of mm_forum, to eliminate  
further security issues.

[1] http://typo3.org/fileadmin/security-team/ 
typo3_security_cookbook_v-0.5.pdf
[2] http://typo3.org/teams/security/security-bulletins/

Regards,

Lars Houmark
lars/typo3.org



_______________________________________________
TYPO3-announce mailing list
TYPO3-announce/lists.netfielders.de
http://lists.netfielders.de/cgi-bin/mailman/listinfo/typo3-announce

----- End forwarded message -----

-- 
 ---- WBR, Michael Shigorin <mike at altlinux.ru>
  ------ Linux.Kiev http://www.linux.kiev.ua/

More information about the TYPO3-russia mailing list