CVE-2007-6642 - Cross-Site Request Forgery (CSRF) vulnerability in Joomla 1.5rc4

Publication

2008-01-04

Last modification

2018-10-15

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! before 1.5 RC4 allow remote attackers to (1) add a Super Admin, (2) upload an extension containing arbitrary PHP code, and (3) modify the configuration as administrators via unspecified vectors.

Description

Joomla! is prone to multiple remote vulnerabilities, including:- Multiple cross-site request-forgery vulnerabilities- A cross-site scripting vulnerability - Multiple privilege-escalation vulnerabilitiesAttackers can exploit these issues to compromise the affected application, execute arbitrary code within the context of the webserver process, or steal cookie-based authentication credentials; other attacks are also possible.These issues affect versions prior to Joomla 1.0.15 RC4.

Solution

The vendor released Joomla! 1.0.15 RC4 to address these issues. Please see the references for more information. Joomla Joomla 1.0 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.1 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.10 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.11 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.12 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.12 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.13 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz Joomla Joomla 1.0.14 Joomla Joomla_1.0.15-Stable-Full_Package.tar.gz http://joomlacode.org/gf/download/frsrelease/6828/22537/Joomla_1.0.15- Stable-Full_Package.tar.gz

Exploit

To exploit the cross-site scripting and cross-site request-forgery issues, an attacker must entice an unsuspecting victim into following a malicious URI.Currently we are not aware of any exploits for the privilege-escalation issues. If you feel we are in error or if you are aware of more recent information, please mail us at: info@vumetric.com.

Classification

CWE-352 - Cross-Site Request Forgery (CSRF)

Risk level (CVSS AV:N/AC:M/Au:N/C:P/I:P/A:P)

Medium

6.8

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Joomla Joomla  1.5Rc4