CVE-2011-4203: Code Injection
First published: Thu Dec 22 2011(Updated: )
CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors involving the url variable.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| composer/moodle/moodle | >=2.1<2.1.3 | 2.1.3 |
| composer/moodle/moodle | >=2.0<2.0.6 | 2.0.6 |
| composer/moodle/moodle | <1.9.15 | 1.9.15 |
| Moodle | =1.9.1 | |
| Moodle | =1.9.2 | |
| Moodle | =1.9.3 | |
| Moodle | =1.9.4 | |
| Moodle | =1.9.5 | |
| Moodle | =1.9.6 | |
| Moodle | =1.9.7 | |
| Moodle | =1.9.8 | |
| Moodle | =1.9.9 | |
| Moodle | =1.9.10 | |
| Moodle | =1.9.11 | |
| Moodle | =1.9.12 | |
| Moodle | =1.9.13 | |
| Moodle | =1.9.14 | |
| Moodle | =2.0.0 | |
| Moodle | =2.0.1 | |
| Moodle | =2.0.2 | |
| Moodle | =2.0.3 | |
| Moodle | =2.0.4 | |
| Moodle | =2.0.5 | |
| Moodle | =2.1.0 | |
| Moodle | =2.1.1 | |
| Moodle | =2.1.2 | |
| Moodle | =2.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2011-4203
- http://penturalabs.wordpress.com/2011/12/13/advisory-crlf-injection-vulnerability-in-moodle/
- https://github.com/moodle/moodle/commit/581e8dba387f090d89382115fd850d8b44351526
- https://github.com/moodle/moodle/commit/ae7cc577b7115a7ad7a68dc4986aca9e2bda2cf5
- https://github.com/moodle/moodle/commit/bc577df6a974606fcb0882b090b00ea5a4e10cf6
- https://github.com/moodle/moodle/commit/e311b14364719b0f7851149ee51c1a4ec732635e
- https://moodle.org/mod/forum/discuss.php?d=191754
- https://github.com/advisories/GHSA-4w8m-96v9-2c86 (Advisory)
- http://tracker.moodle.org/browse/MDL-24808
Frequently Asked Questions
What is the severity of CVE-2011-4203?
CVE-2011-4203 has a medium severity level, allowing attackers to exploit CRLF injection vulnerabilities.
How do I fix CVE-2011-4203?
To fix CVE-2011-4203, upgrade Moodle to version 1.9.15, 2.0.6, 2.1.3, or later.
Which versions of Moodle are affected by CVE-2011-4203?
Moodle versions 1.9.x prior to 1.9.15, 2.0.x prior to 2.0.6, 2.1.x prior to 2.1.3, and 2.2 are affected by CVE-2011-4203.
What type of attack does CVE-2011-4203 enable?
CVE-2011-4203 enables remote attackers to conduct HTTP response splitting attacks via malicious input.
Is CVE-2011-4203 exploitable over the internet?
Yes, CVE-2011-4203 can be exploited by remote attackers over the internet.
- agent/type
- agent/first-publish-date
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-4w8m-96v9-2c86
- alias/CVE-2011-4203
- agent/software-canonical-lookup
- agent/severity
- agent/references
- agent/description
- agent/softwarecombine
- agent/author
- collector/github-advisory
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- package-manager/composer
- vendor/moodle
- canonical/moodle
- version/moodle/1.9.1
- version/moodle/1.9.2
- version/moodle/1.9.3
- version/moodle/1.9.4
- version/moodle/1.9.5
- version/moodle/1.9.6
- version/moodle/1.9.7
- version/moodle/1.9.8
- version/moodle/1.9.9
- version/moodle/1.9.10
- version/moodle/1.9.11
- version/moodle/1.9.12
- version/moodle/1.9.13
- version/moodle/1.9.14
- version/moodle/2.0.0
- version/moodle/2.0.1
- version/moodle/2.0.2
- version/moodle/2.0.3
- version/moodle/2.0.4
- version/moodle/2.0.5
- version/moodle/2.1.0
- version/moodle/2.1.1
- version/moodle/2.1.2
- version/moodle/2.2.0