Vulnerability CVE-2016-6334

Vulnerability Name:

CVE-2016-6334 (CCN-125212)

Assigned:

2016-07-26

Published:

2017-04-20

Updated:

2017-04-29

Summary:

Cross-site scripting (XSS) vulnerability in the Parser::replaceInternalLinks2 method in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving replacement of percent encoding in unclosed internal links.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-79

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2016-6334

Source: BID
Type: UNKNOWN
98057

Source: CCN
Type: BID-98057
Mediawiki 'Parser::replaceInternalLinks2()' Method Cross-Site Scripting Vulnerability

Source: CONFIRM
Type: Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=1369613

Source: XF
Type: UNKNOWN
mediawiki-cve20166334-xss(125212)

Source: CCN
Type: MediaWiki Web site
[MediaWiki-announce] Security Release - 1.27.1, 1.26.4, 1.23.15

Source: MLIST
Type: Mailing List, Patch, Vendor Advisory
[MediaWiki-announce] 20160823 Security Release - 1.27.1, 1.26.4, 1.23.15

Source: CONFIRM
Type: Patch, Third Party Advisory
https://phabricator.wikimedia.org/T137264

Vulnerable Configuration:

Configuration 1:

cpe:/a:mediawiki:mediawiki:*:*:*:*:*:*:*:* (Version <= 1.23.14)

OR cpe:/a:mediawiki:mediawiki:1.26.0:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.1:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.2:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.3:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.4:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.27.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:mediawiki:mediawiki:1.27.0:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.23.14:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.3:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.disco:def:201663340000000	V	CVE-2016-6334 on Ubuntu 19.04 (disco) - medium.	2017-04-20
oval:com.ubuntu.artful:def:20166334000	V	CVE-2016-6334 on Ubuntu 17.10 (artful) - medium.	2017-04-20
oval:com.ubuntu.trusty:def:20166334000	V	CVE-2016-6334 on Ubuntu 14.04 LTS (trusty) - medium.	2017-04-20
oval:com.ubuntu.bionic:def:20166334000	V	CVE-2016-6334 on Ubuntu 18.04 LTS (bionic) - medium.	2017-04-20
oval:com.ubuntu.cosmic:def:201663340000000	V	CVE-2016-6334 on Ubuntu 18.10 (cosmic) - medium.	2017-04-20
oval:com.ubuntu.cosmic:def:20166334000	V	CVE-2016-6334 on Ubuntu 18.10 (cosmic) - medium.	2017-04-20
oval:com.ubuntu.bionic:def:201663340000000	V	CVE-2016-6334 on Ubuntu 18.04 LTS (bionic) - medium.	2017-04-20
oval:com.ubuntu.precise:def:20166334000	V	CVE-2016-6334 on Ubuntu 12.04 LTS (precise) - medium.	2017-04-20

BACK