CVE-2013-4552
high
CVSS v3
—
CVSS v2
7.5
VIR risk
7.5
Description
lib/Auth/Source/External.php in the drupalauth module before 1.2.2 for simpleSAMLphp allows remote attackers to authenticate as an arbitrary user via the user name (uid) in a cookie.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secalert@redhat.com — https://code.google.com/p/drupalauth/issues/detail?id=9
Vendor advisory: secalert@redhat.com — http://www.openwall.com/lists/oss-security/2013/11/08/6
Vendor advisory: secalert@redhat.com — http://www.openwall.com/lists/oss-security/2013/11/05/1
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| drupalauth_project | drupalauth | {"endIncluding":"1.2.1"} | |
References
- http://www.openwall.com/lists/oss-security/2013/11/05/1
- http://www.openwall.com/lists/oss-security/2013/11/08/6
- https://code.google.com/p/drupalauth/issues/detail?id=9
- http://www.openwall.com/lists/oss-security/2013/11/05/1
- http://www.openwall.com/lists/oss-security/2013/11/08/6
- https://code.google.com/p/drupalauth/issues/detail?id=9
CWEs
CWE-287
Verify integrity in audit chain (admin only). AS-IS.