Moodle Multiple Input Validation Vulnerabilities
BID:12120
Info
Moodle Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 12120 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 28 2004 12:00AM |
| Updated: | Dec 28 2004 12:00AM |
| Credit: | Bartek Nowotarski <[email protected]> is credited with the discovery of these issues. |
| Vulnerable: |
Moodle moodle 1.4.2 Moodle moodle 1.4.1 Moodle moodle 1.3.4 Moodle moodle 1.3.3 Moodle moodle 1.3.2 Moodle moodle 1.3.1 Moodle moodle 1.3 Moodle moodle 1.2.1 Moodle moodle 1.2 Moodle moodle 1.1.1 |
| Not Vulnerable: |
Moodle moodle 1.4.3 |
Discussion
Moodle Multiple Input Validation Vulnerabilities
Two input validation vulnerabilities reportedly affect Moodle. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in application-critical actions such as generating web content or loading scripts.
The first issue is a cross-site scripting vulnerability. The second issue is a directory traversal issue that may allow attackers to gain access to session data.
An attacker may leverage these issues to execute arbitrary client-side script code in the browsers of unsuspecting users through cross-site scripting attacks and gain access to sensitive session credentials through directory traversal attacks. Other attacks are also possible.
Two input validation vulnerabilities reportedly affect Moodle. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in application-critical actions such as generating web content or loading scripts.
The first issue is a cross-site scripting vulnerability. The second issue is a directory traversal issue that may allow attackers to gain access to session data.
An attacker may leverage these issues to execute arbitrary client-side script code in the browsers of unsuspecting users through cross-site scripting attacks and gain access to sensitive session credentials through directory traversal attacks. Other attacks are also possible.
Exploit / POC
Moodle Multiple Input Validation Vulnerabilities
No exploit is required to leverage either of these issues. The following proof of concepts have been released.
http://www.example.com/moodle/mod/forum/view.php?id=1&search=moodle%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E
http://www.example.com/moodle/file.php?file=/1/../sessions/sess_6ac3b47ee23c6aa55896f4cd68af9622
No exploit is required to leverage either of these issues. The following proof of concepts have been released.
http://www.example.com/moodle/mod/forum/view.php?id=1&search=moodle%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E
http://www.example.com/moodle/file.php?file=/1/../sessions/sess_6ac3b47ee23c6aa55896f4cd68af9622
Solution / Fix
Moodle Multiple Input Validation Vulnerabilities
Solution:
The vendor has released version 1.4.3 of the affected software resolving these issues.
Moodle moodle 1.1.1
Moodle moodle 1.2
Moodle moodle 1.2.1
Moodle moodle 1.3
Moodle moodle 1.3.1
Moodle moodle 1.3.2
Moodle moodle 1.3.3
Moodle moodle 1.3.4
Moodle moodle 1.4.1
Moodle moodle 1.4.2
Solution:
The vendor has released version 1.4.3 of the affected software resolving these issues.
Moodle moodle 1.1.1
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.2
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.2.1
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.3
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.3.1
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.3.2
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.3.3
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.3.4
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.4.1
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
Moodle moodle 1.4.2
-
Moodle Moodle 1.4.3
http://moodle.org/download.php/stable14/moodle-latest-14.tgz
References
Moodle Multiple Input Validation Vulnerabilities
References:
References:
- Moodle Home Page (Moodle)
- Multiple Vulnerabilities in Moodle (Bartek Nowotarski
) - Re: Multiple Vulnerabilities in Moodle (Martin Dougiamas
)