drupal: multiple vulnerabilities
| Package(s): | drupal | CVE #(s): | |||||||||
| Created: | September 21, 2009 | Updated: | September 23, 2009 | ||||||||
| Description: | From the Drupal advisory:
Multiple vulnerabilities and weaknesses were discovered in Drupal. OpenID association cross site request forgeries: The OpenID module in Drupal 6 allows users to create an account or log into a Drupal site using one or more OpenID identities. OpenID impersonation: The OpenID module is not a compliant implementation of the OpenID Authentication 2.0 specification. An implementation error allows a user to access the account of another user when they share the same OpenID 2.0 provider. File upload: File uploads with certain extensions are not correctly processed by the File API. This may lead to the creation of files that are executable by Apache. The .htaccess that is saved into the files directory by Drupal should normally prevent execution. The files are only executable when the server is configured to ignore the directives in the .htaccess file. Session fixation: Drupal doesn't regenerate the session ID when an anonymous user follows the one time login link used to confirm email addresses and reset forgotten passwords. This enables a malicious user to fix and reuse the session id of a victim under certain circumstances. | ||||||||||
| Alerts: |
| ||||||||||