Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerability

vulnerability alert CVE-2011-4909 CVE-2011-4910 CVE-2011-4911

Joomla: several vulnerabilities

Synthesis of the vulnerability

An attacker can execute JavaScript code in the context of the web site, or obtain internal information on Joomla.
Severity: 2/4.
Creation date: 01/07/2009.
Revision date: 03/07/2009.

Impacted products

Description of the vulnerability

Three vulnerabilities were announced in Joomla.

The HTTP_REFERER variable, which contains the Referer header, is not correctly filtered. An attacker can therefore generate a Cross Site Scripting. [severity:2/4; 20090604, CVE-2011-4909, >]

The PHP_SELF variable, which contains a fragment of the requested url, is not correctly filtered. An attacker can therefore generate a Cross Site Scripting. [severity:2/4; 20090605, CVE-2011-4910, >]

Some PHP scripts do not use _JEXEC to limit their access. An attacker can therefore directly call these scripts, to generate an error which displays the installation path of Joomla. [severity:2/4; 20090606, CVE-2011-4911, >]

Share this bulletin

Delicious Digg Facebook Google bookmarks LinkedIn Mail Reddit StumbleUpon Technorati Twitter Yahoo 

Complete Vigil@nce bulletin

Joomla: several vulnerabilities

Characteristics

Title: Joomla: several vulnerabilities.
Keywords: 20090604 20090605 20090606 Cross HTTP_REFERER JavaScript Joomla PHP PHP_SELF Referer Scripting Site _JEXEC several vulnerabilities.
Identifiers: 20090604, 20090605, 20090606, BID-35544, CVE-2011-4909, CVE-2011-4910, CVE-2011-4911, VIGILANCE-VUL-8831.

Solutions for this vulnerability

Patch or workaround

Supplements

Vulnerability : HTTP_REFERER

The HTTP_REFERER variable, which contains the Referer header, is not correctly filtered. An attacker can therefore generate a Cross Site Scripting.
Severity: 2/4.
Identifiers: 20090604, CVE-2011-4909.
Publications and announces
Source example: [20090604] - Core - Frontend XSS - HTTP_REFERER not properly filtered

Vulnerability : PHP_SELF

The PHP_SELF variable, which contains a fragment of the requested url, is not correctly filtered. An attacker can therefore generate a Cross Site Scripting.
Severity: 2/4.
Identifiers: 20090605, CVE-2011-4910.
Publications and announces
Source example: [20090605] - Core - Frontend XSS - PHP_SELF not properly filtered

Vulnerability : JEXEC

Some PHP scripts do not use _JEXEC to limit their access. An attacker can therefore directly call these scripts, to generate an error which displays the installation path of Joomla.
Severity: 2/4.
Identifiers: 20090606, CVE-2011-4911.
Publications and announces
Source example: [20090606] - Core - Missing JEXEC Check

Attack

Exploit 0day or proof of concept

Computer vulnerabilities tracking service

Vigil@nce provides a systems vulnerabilities bulletin. The Vigil@nce vulnerability database contains several thousand vulnerabilities. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The technology watch team tracks security threats targeting the computer system.



















Copyright 1999-2012 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française