TYPO3 System Utilities (sysutils) Unspecified Information Disclosure Vulnerability
BID:51844
Info
TYPO3 System Utilities (sysutils) Unspecified Information Disclosure Vulnerability
| Bugtraq ID: | 51844 |
| Class: | Unknown |
| CVE: |
CVE-2012-1078 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 02 2012 12:00AM |
| Updated: | Feb 16 2012 05:50PM |
| Credit: | Georg Ringer |
| Vulnerable: |
Typo3 System Utilities 1.0.3 |
| Not Vulnerable: |
Typo3 System Utilities 1.0.4 |
Discussion
TYPO3 System Utilities (sysutils) Unspecified Information Disclosure Vulnerability
System Utilities (sysutils) is prone to an unspecified information-disclosure vulnerability.
Attackers can exploit this issue to harvest sensitive information that may lead to further attacks.
Versions prior to sysutils 1.0.4 are vulnerable.
System Utilities (sysutils) is prone to an unspecified information-disclosure vulnerability.
Attackers can exploit this issue to harvest sensitive information that may lead to further attacks.
Versions prior to sysutils 1.0.4 are vulnerable.
Exploit / POC
TYPO3 System Utilities (sysutils) Unspecified Information Disclosure Vulnerability
Attackers can exploit this issue through a web browser.
Attackers can exploit this issue through a web browser.
Solution / Fix
TYPO3 System Utilities (sysutils) Unspecified Information Disclosure Vulnerability
Solution:
The vendor has released an update. Please see the references for details.
Solution:
The vendor has released an update. Please see the references for details.
References
TYPO3 System Utilities (sysutils) Unspecified Information Disclosure Vulnerability
References:
References: