My Pastes
Public Pastes
Layout Width
Share Pastebin
Guest
Public paste!

Untitled

By: a guest | Mar 28th, 2010 | Syntax: None | Size: 5.38 KB | Hits: 849 | Expires: Never
Download | Raw | Embed | Report abuse
Copy text to clipboard
  1. MSA-09-0032:
  2. Topic: Vulnerability in KSES text cleaning
  3. Severity: Major
  4. Versions affected: <1.8.12 and <1.9.8
  5. Reported by: Sam Marshall
  6. Issue no.: MDL-21026
  7. Solution: upgrade to 1.8.12 or 1.9.8
  8. Workaround: apply patch
  9. http://cvs.moodle.org/moodle/lib/weblib.php?r1=1.1349&r2=1.1350
  10.  
  11. Description: Sam Marshall discovered a serious vulnerability in the KSES html text cleaning library that Moodle includes, please upgrade all sites in order to prevent XSS attacks from any registered user.
  12.  
  13. ==========================================
  14. MSA-09-0033:
  15. Topic: XSS vulnerabilty in the phpcas module
  16. Severity: Major (if using CAS)
  17. Versions affected: <1.8.12 and <1.9.8
  18. Reported by: Joachim Fritschi
  19. Issue no.: MDL-21802
  20. Solution: upgrade to 1.8.12 or 1.9.8
  21. Workaround: use CAS/Client.php from latest release
  22.  
  23. Description: We have backported a fix for a security problem fixed in recent version of PHP CAS client library - http://www.ja-sig.org/issues/browse/PHPCAS-52. The problem can be exploited only if CAS authentication is enabled and used on your site.
  24.  
  25. ==========================================
  26. MSA-09-0034:
  27. Topic: Disclosure of full user names
  28. Severity: Minor - privacy
  29. Versions affected: <1.8.12 and <1.9.8
  30. Reported by: Klaus Kirchner
  31. Issue no.: MDL-21830
  32. Solution: upgrade to 1.8.12 or 1.9.8
  33. Workaround: patch
  34. http://cvs.moodle.org/moodle/user/view.php?r1=1.168.2.28&r2=1.168.2.29
  35.  
  36. Description: Klaus Kirchner identified a problem in the course profile page which allowed ordinary users to find out names of other users - see http://moodle.org/mod/forum/discuss.php?d=145967 for more details.
  37.  
  38. ==========================================
  39. MSA-09-0035:
  40. Topic: Improved access control in course restore
  41. Severity: Minor
  42. Versions affected:  <1.9.8
  43. Reported by: multiple reporters
  44. Issue no.: MDL-16658, MDL-19233
  45. Solution: upgrade to 1.9.8
  46. Workaround: none
  47.  
  48. Description: The restoring of courses sometimes resulted in creation of new roles - that code should be now more reliable. Please note that all the users that are allowed to restore backup files must be trustworthy.
  49.  
  50. ==========================================
  51. MSA-09-0036:
  52. Topic: Incorrect validation of forms data
  53. Severity: Critical
  54. Versions affected: <1.8.12 and <1.9.8
  55. Reported by: Sascha Herzog
  56. Issue no.: MDL-21767
  57. Solution: upgrade to 1.8.12 or 1.9.8
  58. Workaround: patch
  59.  
  60.     * http://cvs.moodle.org/moodle/lib/form/selectgroups.php?r1=1.2.4.2&r2=1.2.4.3
  61.     * http://cvs.moodle.org/moodle/lib/form/select.php?r1=1.10.4.2&r2=1.10.4.3
  62.  
  63. Description: Sascha Herzog discovered a SQL injection exploit in several forms, this was caused by incorrect data validation in some forms elements.
  64.  
  65. ==========================================
  66. MSA-09-0037:
  67. Topic: Incorrect validation of forms data
  68. Severity: Critical
  69. Versions affected: <1.8.12 and <1.9.8
  70. Reported by: Sascha Herzog
  71. Issue no.: MDL-21767
  72. Solution: upgrade to 1.8.12 or 1.9.8
  73. Workaround: patch
  74.  
  75.     * http://cvs.moodle.org/moodle/lib/form/selectgroups.php?r1=1.2.4.2&r2=1.2.4.3
  76.     * http://cvs.moodle.org/moodle/lib/form/select.php?r1=1.10.4.2&r2=1.10.4.3
  77.  
  78. Description: Sascha Herzog discovered a SQL injection exploit in several forms, this was caused by incorrect data validation in some forms elements.
  79.  
  80. ==========================================
  81. MSA-09-0038:
  82. Topic: SQL injection in Wiki module
  83. Severity: Critical
  84. Versions affected: <1.8.12 and <1.9.8
  85. Reported by: Matthew Slowe
  86. Issue no.: MDL-21818
  87. Solution: upgrade to 1.8.12 or 1.9.8
  88. Workaround: patch
  89.  
  90.     * http://cvs.moodle.org/moodle/mod/wiki/view.php?r1=1.76.2.6&r2=1.76.2.7
  91.     * remove mod/wiki/* if wiki module not used
  92.  
  93. Description: Matthew Slowe discovered that the data passed to
  94. add_to_log() function in wiki module is not sanitised properly, this could allow SQL injection type attacks if there are any instances of wiki in your courses.
  95.  
  96. ==========================================
  97. MSA-09-0039:
  98. Topic: Reflective Cross Site Scripting (XSS) in the Moodle Global Search Engine
  99. Severity: Major (if global search enabled) Versions affected: <1.8.12 and <1.9.8 Reported by: Sascha Herzog Issue no.: MDL-21649
  100. Solution: upgrade to 1.8.12 or 1.9.8
  101. Workaround: patch
  102.  
  103.     * http://cvs.moodle.org/moodle/search/query.php?r1=1.16.2.10&r2=1.16.2.11
  104.  
  105. Description: Sascha Herzog found a problem in the handling of user submitted data in global search forms. This problem is exploitable only when global search is enabled. Please note that the global search feature is still listed as experimental and is disabled by default.
  106.  
  107. ==========================================
  108. MSA-09-0040:
  109. Topic: Persistent XSS when using Login-as feature
  110. Severity: Major
  111. Versions affected: <1.8.12 and <1.9.8
  112. Reported by: Sascha Herzog
  113. Issue no.: MDL-21769
  114. Solution: upgrade to 1.8.12 or 1.9.8
  115. Workaround: see Version control tab in tracker issue
  116.  
  117. Description: Users may trick admins into using the "Login as" feature to edit some existing posts which contain XSS exploit code.
  118.  
  119. ==========================================
  120. MSA-09-0041:
  121. Topic: Session fixation prevention now turned on by default
  122. Severity: Major
  123. Versions affected: <1.8.12 and <1.9.8
  124. Reported by: Sascha Herzog
  125. Issue no.: MDL-21788
  126. Solution: turn on session id regeneration
  127.  
  128. Description: Enabling of "Regenerate session id during login" setting is now strongly recommended for all production servers. It is now compatible with all official authentication plugins including mnet.
create new paste | create new version of this paste RAW Paste Data