exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Drupal FileField 6.x Access Bypass

Drupal FileField 6.x Access Bypass
Posted Feb 12, 2014
Authored by Stella Power | Site drupal.org

Drupal FileField third party module version 6.x suffers from an access bypass vulnerability.

tags | advisory, bypass
SHA-256 | a2cbc690200652a7ecc5ae0451604ba76d7049ba9fc2eb6e4ed8837da45f799d

Drupal FileField 6.x Access Bypass

Change Mirror Download
View online: https://drupal.org/node/2194639

* Advisory ID: DRUPAL-SA-CONTRIB-2014-015
* Project: FileField [1] (third-party module)
* Version: 6.x
* Date: 2014-02-12
* Security risk: Moderately critical [2]
* Exploitable from: Remote
* Vulnerability: Access bypass

-------- DESCRIPTION
---------------------------------------------------------

FileField module allows users to upload files with in conjunction with the
Content Construction Kit (CCK) module in Drupal 6.

The module doesn't sufficiently check permissions on revisions when
determining if a user should have access to a particular file attached to
that revision. A user could gain access to private files attached to
revisions when they don't have access to the corresponding revision.

This vulnerability is mitigated by the fact that an attacker must have access
to upload files through FileField module while creating content, and the site
must be using a non-core workflow module that allows users to create
unpublished revisions of content.


-------- CVE IDENTIFIER(S) ISSUED
--------------------------------------------

* /A CVE identifier [3] will be requested, and added upon issuance, in
accordance with Drupal Security Team processes./

-------- VERSIONS AFFECTED
---------------------------------------------------

* FileField 6.x-3.x versions prior to 6.x-3.12.

Drupal core is not affected. If you do not use the contributed FileField [4]
module, there is nothing you need to do.

-------- SOLUTION
------------------------------------------------------------

Install the latest version:

* If you use the FileField module for Drupal 6.x, upgrade to FileField
6.x-3.12 [5]

Also see the FileField [6] project page.

-------- REPORTED BY
---------------------------------------------------------

* Stella Power [7] of the Drupal Security Team

-------- FIXED BY
------------------------------------------------------------

* Nate Haug [8] the module maintainer
* Stella Power [9] of the Drupal Security Team

-------- COORDINATED BY
------------------------------------------------------

* Lee Rowlands [10] of the Drupal Security Team

-------- CONTACT AND MORE INFORMATION
----------------------------------------

The Drupal security team can be reached at security at drupal.org or via the
contact form at http://drupal.org/contact [11].

Learn more about the Drupal Security team and their policies [12], writing
secure code for Drupal [13], and securing your site [14].

Follow the Drupal Security Team on Twitter at
https://twitter.com/drupalsecurity [15]


[1] http://drupal.org/project/filefield
[2] http://drupal.org/security-team/risk-levels
[3] http://cve.mitre.org/
[4] http://drupal.org/project/filefield
[5] https://drupal.org/node/2194103
[6] http://drupal.org/project/filefield
[7] https://drupal.org/user/66894
[8] https://drupal.org/user/35821
[9] https://drupal.org/user/66894
[10] https://drupal.org/user/395439
[11] http://drupal.org/contact
[12] http://drupal.org/security-team
[13] http://drupal.org/writing-secure-code
[14] http://drupal.org/security/secure-configuration
[15] https://twitter.com/drupalsecurity

Login or Register to add favorites

File Archive:

June 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    19 Files
  • 2
    Jun 2nd
    16 Files
  • 3
    Jun 3rd
    28 Files
  • 4
    Jun 4th
    0 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    19 Files
  • 7
    Jun 7th
    23 Files
  • 8
    Jun 8th
    11 Files
  • 9
    Jun 9th
    10 Files
  • 10
    Jun 10th
    4 Files
  • 11
    Jun 11th
    0 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    27 Files
  • 20
    Jun 20th
    65 Files
  • 21
    Jun 21st
    10 Files
  • 22
    Jun 22nd
    8 Files
  • 23
    Jun 23rd
    6 Files
  • 24
    Jun 24th
    6 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close