[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-1766Date: (C)2011-05-23   (M)2023-12-22


includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is enabled, does not clear certain cached data after verification of an auth token fails, which allows remote attackers to bypass authentication by creating crafted wikiUserID and wikiUserName cookies, or by leveraging an unattended workstation.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.8
Exploit Score: 8.6
Impact Score: 4.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: NONE
  
Reference:
SECUNIA-44684
BID-47722
FEDORA-2011-6774
FEDORA-2011-6775
FEDORA-2011-6781
http://lists.wikimedia.org/pipermail/mediawiki-announce/2011-May/000098.html
https://bugzilla.redhat.com/show_bug.cgi?id=702512
https://bugzilla.wikimedia.org/show_bug.cgi?id=28639

CPE    136
cpe:/a:mediawiki:mediawiki:1.16.2
cpe:/a:mediawiki:mediawiki:1.12.3
cpe:/a:mediawiki:mediawiki:1.4:beta4
cpe:/a:mediawiki:mediawiki:1.12.2
...
CWE    1
CWE-287
OVAL    3
oval:org.secpod.oval:def:102664
oval:org.secpod.oval:def:102665
oval:org.secpod.oval:def:102863

© SecPod Technologies