TYPO3 PDF Generator 2 Extension Multiple Unspecified Vulnerabilities
BID:30057
Info
TYPO3 PDF Generator 2 Extension Multiple Unspecified Vulnerabilities
| Bugtraq ID: | 30057 |
| Class: | Unknown |
| CVE: |
CVE-2008-3049 CVE-2008-3050 CVE-2008-3048 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 01 2008 12:00AM |
| Updated: | Jul 05 2016 10:01PM |
| Credit: | David Krüsemann and Henning Pingel |
| Vulnerable: |
Typo3 PDF Generator 2 0.5 |
| Not Vulnerable: |
Typo3 PDF Generator 2 0.5.1 |
Discussion
TYPO3 PDF Generator 2 Extension Multiple Unspecified Vulnerabilities
The PDF Generator 2 extension is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize input before using it in an SQL-query. This application is also prone to unspecified denial-of-service and information-disclosure vulnerabilities.
Exploiting the SQL-injection issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Exploiting the denial-of-service issue could prevent legitimate use of the application.
Attackers may also leverage the information-disclosure vulnerability to obtain potentially sensitive information that may aid in further attacks.
Versions up to and including PDF Generator 2 0.5.0 are vulnerable.
The PDF Generator 2 extension is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize input before using it in an SQL-query. This application is also prone to unspecified denial-of-service and information-disclosure vulnerabilities.
Exploiting the SQL-injection issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Exploiting the denial-of-service issue could prevent legitimate use of the application.
Attackers may also leverage the information-disclosure vulnerability to obtain potentially sensitive information that may aid in further attacks.
Versions up to and including PDF Generator 2 0.5.0 are vulnerable.
Exploit / POC
TYPO3 PDF Generator 2 Extension Multiple Unspecified Vulnerabilities
Attackers will likely use a browser to exploit these issues.
Attackers will likely use a browser to exploit these issues.
Solution / Fix
TYPO3 PDF Generator 2 Extension Multiple Unspecified Vulnerabilities
Solution:
The vendor has released fixes. Please see the references for more information.
Solution:
The vendor has released fixes. Please see the references for more information.
References
TYPO3 PDF Generator 2 Extension Multiple Unspecified Vulnerabilities
References:
References:
- Synnefoims Homepage (synnefoims)
- TYPO3 PDF Generator 2 (TYPO3)
- TYPO3 Collective Security Bulletin TYPO3-20080701-1: Several vulnerabilities in (TYPO3)