Vulnerability CVE-2012-2239

Vulnerability Name:

CVE-2012-2239 (CCN-80502)

Assigned:

2012-09-07

Published:

2012-09-07

Updated:

2013-02-08

Summary:

Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote attackers to read arbitrary files or create TCP connections via an XML external entity (XXE) injection attack, as demonstrated by reading config.php.

CVSS v3 Severity:

6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
4.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

6.4 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
4.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-94

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2012-2239

Source: DEBIAN
Type: UNKNOWN
DSA-2591

Source: DEBIAN
Type: DSA-2591
mahara -- several vulnerabilities

Source: CCN
Type: BID-56717
Mahara XML External Entity CVE-2012-2239 Information Disclosure Vulnerability

Source: CCN
Type: Mahara Bug #1047111
XEE possible in mahara

Source: CONFIRM
Type: UNKNOWN
https://bugs.launchpad.net/mahara/+bug/1047111

Source: XF
Type: UNKNOWN
mahara-xpath-injection(80502)

Source: CCN
Type: Mahara Web Site
Mahara

Source: CONFIRM
Type: Vendor Advisory
https://mahara.org/interaction/forum/topic.php?id=4869

Vulnerable Configuration:

Configuration 1:

cpe:/a:mahara:mahara:1.1.4:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.1.5:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4:rc1:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4:rc2:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4:rc3:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4:rc4:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4.0:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4.1:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4.2:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.4.3:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5:rc1:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5:rc2:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.0:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.2:*:*:*:*:*:*:*

Configuration CCN 1: