Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [Security-news] SA-CONTRIB-2012-018 - Revisioning - Cross Site Scripting

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [Security-news] SA-CONTRIB-2012-018 - Revisioning - Cross Site Scripting


Chronologisch Thread 
  • From: security-news AT drupal.org
  • To: security-news AT drupal.org
  • Subject: [IT-SecNots] [Security-news] SA-CONTRIB-2012-018 - Revisioning - Cross Site Scripting
  • Date: Thu, 9 Feb 2012 00:47:19 +0000 (UTC)
  • List-archive: <https://service.piratenpartei.de/pipermail/it-securitynotifies>
  • List-id: Sicherheitsankündigungen <it-securitynotifies.lists.piratenpartei.de>

* Advisory ID: DRUPAL-SA-CONTRIB-2012-018
* Project: Revisioning [1] (third-party module)
* Version: 6.x
* Date: 2012-FEB-08
* Security risk: Less critical [2]
* Exploitable from: Remote
* Vulnerability: Cross Site Scripting

-------- DESCRIPTION
---------------------------------------------------------

The Drupal Revisioning module (https://drupal.org/project/revisioning [3])
"is a module for the configuration of workflows to create, moderate and
publish content revisions."
The Revisioning module contains a persistent cross site scripting (XSS)
vulnerability due to the fact that it fails to sanitize tags before display.

Users with the ability to create content and tags that are submitted to a
review queue could include malicious JavaScript or HTML as part of their
tags. Users reviewing the queue would then become victims of the XSS attack.

The risk is mitigated by the fact that the attacker must have the ability to
create taxonomy terms (either "administer taxonomy" or via a freetagging
vocabulary).

-------- VERSIONS AFFECTED
---------------------------------------------------

* Revisioning 6.x-3.13 and prior.

Drupal core is not affected. If you do not use the contributed Revisioning
[4] module, there is nothing you need to do.

-------- SOLUTION
------------------------------------------------------------

Install the latest version:

* Upgrade to Revisioning 6.x-3.14 [5]

See also the Revisioning [6] project page.

-------- REPORTED BY
---------------------------------------------------------

* Justin C. Klein Keane [7]

-------- FIXED BY
------------------------------------------------------------

* Justin C. Klein Keane [8]
* Rik de Boer [9], the module maintainer

-------- COORDINATED BY
------------------------------------------------------

* Dylan Tack [10] of the Drupal Security Team

-------- CONTACT AND MORE INFORMATION
----------------------------------------

The Drupal security team can be reached at security at drupal.org or via the
contact form at http://drupal.org/contact [11].

Learn more about the Drupal Security team and their policies [12], writing
secure code for Drupal [13], and securing your site [14].


[1] http://drupal.org/project/revisioning
[2] http://drupal.org/security-team/risk-levels
[3] https://drupal.org/project/revisioning
[4] http://drupal.org/project/revisioning
[5] http://drupal.org/node/1431114
[6] http://drupal.org/project/revisioning
[7] http://drupal.org/user/302225
[8] http://drupal.org/user/302225
[9] http://drupal.org/user/404007
[10] http://drupal.org/user/96647
[11] http://drupal.org/contact
[12] http://drupal.org/security-team
[13] http://drupal.org/writing-secure-code
[14] http://drupal.org/security/secure-configuration

_______________________________________________
Security-news mailing list
Security-news AT drupal.org
http://lists.drupal.org/mailman/listinfo/security-news



  • [IT-SecNots] [Security-news] SA-CONTRIB-2012-018 - Revisioning - Cross Site Scripting, security-news, 09.02.2012

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang