Vulnerability-Lookup

CERTA-2005-AVI-479

Vulnerability from certfr_avis - Published: 2005-12-02 - Updated: 2005-12-02

Une vulnérabilité dans DotClear permet à un utilisateur mal itentionné d'injecter du code SQL arbitraire à distance.

Description

DotClear est un outil de publication sur l'Internet de type Weblog.

Une vulnérabilité dans la validation des paramètres fournit par le cookie du poste client permet à utilisateur d'exécuter à distance, sur le serveur vulnérable, du code SQL arbitraire à distance.

Solution

Appliquer la mise à jour de sécurité DotClear en passant à la version 1.2.3 disponible à l'adresse suivante :

http://www.dotclear.net/download.html

DotClear 1.x.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Mise à jour de sécurité DotClear du 30 novembre 2005	None	vendor-advisory
Mise à jour de sécurité DotClear v1.2.3 du 30 novembre 2005 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eDotClear 1.x.\u003c/P\u003e",
  "content": "## Description\n\nDotClear est un outil de publication sur l\u0027Internet de type Weblog.\n\nUne vuln\u00e9rabilit\u00e9 dans la validation des param\u00e8tres fournit par le\ncookie du poste client permet \u00e0 utilisateur d\u0027ex\u00e9cuter \u00e0 distance, sur\nle serveur vuln\u00e9rable, du code SQL arbitraire \u00e0 distance.\n\n## Solution\n\nAppliquer la mise \u00e0 jour de s\u00e9curit\u00e9 DotClear en passant \u00e0 la version\n1.2.3 disponible \u00e0 l\u0027adresse suivante :\n\n    http://www.dotclear.net/download.html\n",
  "cves": [],
  "initial_release_date": "2005-12-02T00:00:00",
  "last_revision_date": "2005-12-02T00:00:00",
  "links": [
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 DotClear v1.2.3 du 30 novembre 2005    :",
      "url": "http://www.dotclear.net/download.html"
    }
  ],
  "reference": "CERTA-2005-AVI-479",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-12-02T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Injection de code SQL"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans DotClear permet \u00e0 un utilisateur mal itentionn\u00e9\nd\u0027injecter du code SQL arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans DotClear",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 DotClear du 30 novembre 2005",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted