Drupal Multiple Input Validation Vulnerabilities
BID:18245
CVE-2006-2742 | CVE-2006-2743 | CVE-2006-2831 | CVE-2006-2832 | CVE-2006-2833 |Info
Drupal Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 18245 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 02 2006 12:00AM |
| Updated: | Sep 07 2006 09:13PM |
| Credit: | Karoly Negyesi, milw0rm, Ayman Hourieh and Bart Jansens are credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Drupal Drupal 4.7.1 Drupal Drupal 4.7 Drupal Drupal 4.6.7 Drupal Drupal 4.6.6 Drupal Drupal 4.6.5 Drupal Drupal 4.6.4 Drupal Drupal 4.6.3 Drupal Drupal 4.6.2 Drupal Drupal 4.6.1 Drupal Drupal 4.6 Drupal Drupal 4.5.8 Drupal Drupal 4.5.7 Drupal Drupal 4.5.6 Drupal Drupal 4.5.5 Drupal Drupal 4.5.4 Drupal Drupal 4.5.3 Drupal Drupal 4.5.2 Drupal Drupal 4.5.2 Drupal Drupal 4.5.1 Drupal Drupal 4.5 Drupal Drupal 4.4.3 Drupal Drupal 4.4.2 Drupal Drupal 4.4.1 Drupal Drupal 4.4 Drupal Drupal 4.2 .0 RC Drupal Drupal 4.1 .0 Drupal Drupal 4.0 .0 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 |
| Not Vulnerable: |
Drupal Drupal 4.7.2 Drupal Drupal 4.6.8 |
Discussion
Drupal Multiple Input Validation Vulnerabilities
Drupal is prone to multiple input-validation vulnerabilities. The issues include the execution of arbitrary files, cross-site scripting, and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
A successful exploit of these vulnerabilities could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
Drupal is prone to multiple input-validation vulnerabilities. The issues include the execution of arbitrary files, cross-site scripting, and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
A successful exploit of these vulnerabilities could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
Exploit / POC
Drupal Multiple Input Validation Vulnerabilities
Attackers can exploit these issues via a web client.
Attackers can exploit these issues via a web client.
Solution / Fix
Drupal Multiple Input Validation Vulnerabilities
Solution:
The vendor has released updated versions to address these issues.
Please see the referenced advisories for more information.
Drupal Drupal 4.5.3
Solution:
The vendor has released updated versions to address these issues.
Please see the referenced advisories for more information.
Drupal Drupal 4.5.3
-
Debian drupal_4.5.3-6.1sarge1_all.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/d/drupal/drupal_4.5.3-6.1 sarge1_all.deb
References
Drupal Multiple Input Validation Vulnerabilities
References:
References:
- DRUPAL-SA-2006-005 - SQL injection vulnerability (Drupal)
- DRUPAL-SA-2006-006 - Execution of arbitrary files in certain Apache configuratio (Drupal)
- DRUPAL-SA-2006-007 - Revision to DRUPAL-SA-2006-006 (Drupal)
- DRUPAL-SA-2006-008 - XSS Vulnerability in taxonomy module (Drupal)
- Vendor Homepage (Drupal)