Scoutnet vzw :: Bekijk onderwerp - [Drupal] Security announcements: getID3 library/Audio, Media

Scoutnet vzw http://forum.scoutnet.be/

[Drupal] Security announcements: getID3 library/Audio, Media http://forum.scoutnet.be/viewtopic.php?f=19&t=1774	Pagina 1 van 1

Auteur:	To [ 16 Feb 2007 10:14 ]
Titel:	[Drupal] Security announcements: getID3 library/Audio, Media
------------GETID3 LIBRARY AND AUDIO, MEDIAFIELD - ARBITRARY CODE EXECUTION------------ * Advisory ID: DRUPAL-SA-2007-009. * Project: getID3 (third-party library) used by Audio and Mediafield * Version: getID3 1.7.1 * Date: 2007-Feb-16 * Security risk: Highly critical * Exploitable from: Remote * Vulnerability: Arbitrary code execution ------------DESCRIPTION------------ The getID3 library [http://getid3.sourceforge.net/] used by Audio and Mediafield contains a directory with scripts demonstrating use of the library. These scripts allow any visitor to browse the filesystem, read and delete files or write to zero-byte files or files with an mp3 extension. These actions are only limited by the privileges of the user account the server uses to execute the scripts. This may even lead to the execution of arbitrary code. Execution of arbitrary code is facilitated by the way Audio and Mediafield implement upload functionality. ------------VERSIONS AFFECTED------------ * getID3 1.7.1. * Mediafield 4.7.x-1.x-dev. * Mediafield 5.x-1.x-dev. * Audio 4.7.x-1.x-dev. * Audio 5.x-0.2. * Audio 5.x-0.x-dev. Drupal core is not affected. If you do not use the getID3 library, there is nothing you need to do. ------------SOLUTION------------ Remove the getID3 demos folder or upgrade to getID3 1.7.8b1. In addition: * If you use Mediafield 4.7.x upgrade to 4.7.x-1.0 [http://drupal.org/node/119587]. * If you use Mediafield 5.x upgrade to 5.x-1.0 [http://drupal.org/node/119586]. * If you use Audio 4.7.x upgrade to 4.7.x-1.0 [http://drupal.org/node/119394]. * If you use Audio 5.x upgrade to 5.x-0.3 [http://drupal.org/node/119393]. See also the Audio project page [http://drupal.org/project/audio]. See also the Mediafield project page [http://drupal.org/project/mediafield]. ------------REPORTED BY------------ John Forsythe. ------------CONTACT------------ The security contact for Drupal can be reached at security at drupal.org or via the form at [http://drupal.org/contact].

Pagina 1 van 1	Alle tijden zijn UTC + 1 uur
Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/