—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1
Liebe Kolleginnen und Kollegen,
soeben erreichte uns nachfolgende Warnung. Wir geben diese Informationen
unveraendert an Sie weiter.
TYPO3-SA-2011-006 – Mehrere Schwachstellen in TYPO3-Erweiterungen
In den TYPO3-Erweiterungen Photogallery (ce_gallery) Version 2.0.5 und
frueher und in SEO Photogallery by Evorion (evgallery) Version 1.0.7 und
frueher besteht jeweils eine Schwachstelle, die entfernten Angreifern
ermoeglicht, beliebige SQL-Befehle zur Ausfuehrung zu bringen. Die
Schwachstellen werden bereits aktiv ausgenutzt!
Betroffen sind die folgenden Software Pakete und Plattformen:
TYPO3-Erweiterung Photogallery (ce_gallery) Version 2.0.5 und frueher
TYPO3-Erweiterung SEO Photogallery by Evorion (evgallery) Version
1.0.7 und frueher
Alle Plattformen auf denen TYPO3 betrieben werden kann.
Vom Hersteller werden ueberarbeitete Pakete zur Verfuegung gestellt.
(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.
Mit freundlichen Gruessen,
Matthias Braeck
– —
Matthias Braeck (Incident Response Team)
DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-590
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstrasse 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski
Automatische Warnmeldungen: https://www.cert.dfn.de/autowarn
TYPO3 Security Bulletin TYPO3-SA-2011-006: Several vulnerabilities in third party extensions
Release Date: June 14, 2011
Please read first: This Collective Security Bulletin (CSB) is a listing of vulnerable extensions with neither significant download numbers, nor other special importance amongst the TYPO3 Community. The intention of CSBs is to reduce the workload of the TYPO3 Security Team and of the maintainers of extensions with vulnerabilities. Nevertheless, vulnerabilities in TYPO3 core or important extensions will still get the well-known single Security Bulletin each.
Please read our buzz blog post, which has a detailed explanation on CSBs.
All vulnerabilities affect third-party extensions. These extensions are not part of the TYPO3 default installation.
Extension: Photogallery (ce_gallery)
Affected Versions: 2.0.5 and all versions below
Vulnerability Type: SQL Injection
Severity: High
Suggested CVSS v2.0: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:H/RL:OF/RC:C (What’s that?)
Note: The vulnerability is being exploited in the wild. Please update the extension ce_gallery immediately when being used!
Solution: An update (version 2.0.6) is available from the TYPO3 extension manager and at http://typo3.org/extensions/repository/view/ce_gallery/2.0.6/.
Credits: Credits go to Christoph Bauer, Roberto Presedo and Georg Ringer who discovered and reported this issue.
Extension: SEO Photogallery by Evorion (evgallery)
Affected Versions: 1.0.7 and all versions below
Vulnerability Type: SQL Injection
Severity: High
Suggested CVSS v2.0: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C (What’s that?)
Solution: An update (version 1.0.8) is available from the TYPO3 extension manager and at http://typo3.org/extensions/repository/view/evgallery/1.0.8/.
General advice: Follow the recommendations that are given in the TYPO3 Security Cookbook. Please subscribe to the typo3-announce mailing list.
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2.0.16 (GNU/Linux)
iQEcBAEBAgAGBQJN+dcuAAoJEJtyb8U7iGZBHiQIAJRQZc746vLksyzLgLNG52lO
nqyyCOEsBOhNmtFoFsOvJzSJfElwPgayMEVjsNXeMfU6qtQPQ94Zug0F4rRkDJVi
atVXsP3u3QI7hqTQ6lUPHJADoXzaGNPPikhRJtcftzFybA7BUSIzxsCYSf2/5vJ9
YxZ3eG/w6QJzpjT5DLJfQF16x2+kdbze2WY2hAkKswfw3JO4oPoCV+2C+uxCLat4
1UT8G31VHWViGLezloaF9PfFvhfnEKIQ9DqREi+YK3u0tP4pSWZvrn5i9sd23S0u
40qvxuhXVG8z8+poa54REdDGPymKzUaDwhYBPaqTIT8Npali/5yg8zLQ2tSI+1E=
=41Ff
—–END PGP SIGNATURE—–
