Vulnerability Name:

CVE-2012-2067 (CCN-74037)

Assigned:2012-03-14
Published:2012-03-14
Updated:2017-08-29
Summary:Unspecified vulnerability in the CKeditor module 6.x-2.x before 6.x-2.3 and the CKEditor module 6.x-1.x before 6.x-1.9 and 7.x-1.x before 7.x-1.7 for Drupal, when the core PHP module is enabled, allows remote authenticated users or remote attackers to execute arbitrary PHP code via the text parameter to a text filter.
Note: some of these details are obtained from third party information.
Per http://drupal.org/node/1482528 the versions affected are "FCKeditor 6.x-2.x versions prior to 6.x-2.3, CKEditor 6.x-1.x versions prior to 6.x-1.9, and CKEditor 7.x-1.x versions prior to 7.x-1.7."

CVSS v3 Severity:5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
5.1 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2012-2067

Source: CONFIRM
Type: Patch
http://drupal.org/node/1482442

Source: CONFIRM
Type: Patch
http://drupal.org/node/1482466

Source: CONFIRM
Type: Patch
http://drupal.org/node/1482480

Source: CCN
Type: DRUPAL-SA-CONTRIB-2012-040
CKEditor and FCKeditor - multiple XSS, arbitrary code execution

Source: MISC
Type: Patch, Vendor Advisory
http://drupal.org/node/1482528

Source: CCN
Type: Packetstorm Security Website
Drupal FCKEditor/CKEditor PHP Execution

Source: CCN
Type: SA48345
TIBCO Products Unspecified Information Disclosure Vulnerability

Source: CCN
Type: SA48435
Drupal CKEditor / FCKeditor Modules Cross Site Scripting and Code Execution Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
48435

Source: MLIST
Type: UNKNOWN
[oss-security] 20120406 CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments)

Source: OSVDB
Type: UNKNOWN
80080

Source: CCN
Type: OSVDB ID: 80080
CKEditor / FCKeditor Module for Drupal Unspecified PHP Code Execution

Source: XF
Type: UNKNOWN
ckeditor-drupal-code-execution(74037)

Source: XF
Type: UNKNOWN
ckeditor-drupal-code-execution(74037)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ckeditor:fckeditor:6.x-1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.1:beta:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.1:beta2:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.2-1:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:beta:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:beta2:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:rc1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:rc2:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:rc3:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:rc5:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:rc6:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.3:rc7:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.4:rc1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.4:rc2:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-1.x:dev:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:alpha1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:alpha3:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:alpha4:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:alpha5:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:beta3:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:beta4:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.1:rc1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:fckeditor:6.x-2.x:dev:*:*:*:*:*:*
  • AND
  • cpe:/a:drupal:drupal:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:ckeditor:ckeditor:6.x-1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:6.x-1.x:dev:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ckeditor:ckeditor:7.x-1.x:dev:*:*:*:*:*:*
  • AND
  • cpe:/a:drupal:drupal:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ckeditor fckeditor 6.x-1.1
    ckeditor fckeditor 6.x-1.1 beta
    ckeditor fckeditor 6.x-1.1 beta2
    ckeditor fckeditor 6.x-1.2
    ckeditor fckeditor 6.x-1.2-1
    ckeditor fckeditor 6.x-1.3
    ckeditor fckeditor 6.x-1.3 beta
    ckeditor fckeditor 6.x-1.3 beta2
    ckeditor fckeditor 6.x-1.3 rc1
    ckeditor fckeditor 6.x-1.3 rc2
    ckeditor fckeditor 6.x-1.3 rc3
    ckeditor fckeditor 6.x-1.3 rc5
    ckeditor fckeditor 6.x-1.3 rc6
    ckeditor fckeditor 6.x-1.3 rc7
    ckeditor fckeditor 6.x-1.4
    ckeditor fckeditor 6.x-1.4 rc1
    ckeditor fckeditor 6.x-1.4 rc2
    ckeditor fckeditor 6.x-1.x dev
    ckeditor fckeditor 6.x-2.0
    ckeditor fckeditor 6.x-2.0 alpha1
    ckeditor fckeditor 6.x-2.0 alpha3
    ckeditor fckeditor 6.x-2.0 alpha4
    ckeditor fckeditor 6.x-2.0 alpha5
    ckeditor fckeditor 6.x-2.0 beta1
    ckeditor fckeditor 6.x-2.0 beta2
    ckeditor fckeditor 6.x-2.0 beta3
    ckeditor fckeditor 6.x-2.0 beta4
    ckeditor fckeditor 6.x-2.0 rc1
    ckeditor fckeditor 6.x-2.0 rc2
    ckeditor fckeditor 6.x-2.1
    ckeditor fckeditor 6.x-2.1 rc1
    ckeditor fckeditor 6.x-2.2
    ckeditor fckeditor 6.x-2.2 rc1
    ckeditor fckeditor 6.x-2.3
    ckeditor fckeditor 6.x-2.x dev
    drupal drupal -
    ckeditor ckeditor 6.x-1.0
    ckeditor ckeditor 6.x-1.0 beta1
    ckeditor ckeditor 6.x-1.1
    ckeditor ckeditor 6.x-1.2
    ckeditor ckeditor 6.x-1.3
    ckeditor ckeditor 6.x-1.4
    ckeditor ckeditor 6.x-1.5
    ckeditor ckeditor 6.x-1.6
    ckeditor ckeditor 6.x-1.7
    ckeditor ckeditor 6.x-1.x dev
    ckeditor ckeditor 7.x-1.0
    ckeditor ckeditor 7.x-1.0 rc1
    ckeditor ckeditor 7.x-1.1
    ckeditor ckeditor 7.x-1.2
    ckeditor ckeditor 7.x-1.3
    ckeditor ckeditor 7.x-1.4
    ckeditor ckeditor 7.x-1.5
    ckeditor ckeditor 7.x-1.6
    ckeditor ckeditor 7.x-1.x dev
    drupal drupal -