First published: Tue Nov 29 2011(Updated: )
An information disclosure flaw was found in the way MediaWiki, the wiki engine, processed 'curid' and 'oldid' request paramaters. A remote attacker could use this flaw to enumerate page titles on private MediaWiki installations. Upstream bug report: [1] <a href="https://bugzilla.wikimedia.org/show_bug.cgi?id=32276">https://bugzilla.wikimedia.org/show_bug.cgi?id=32276</a> An information disclosure flaw was found in the way MediaWiki, the wiki engine, performed action=ajax requests dispatching to relevant internal functions. These requests were dispatched without any read permissions checks being done. A remote attacker could use this flaw to obtain data on private MediaWiki installations. Upstream bug report: [2] <a href="https://bugzilla.wikimedia.org/show_bug.cgi?id=32616">https://bugzilla.wikimedia.org/show_bug.cgi?id=32616</a> References: [3] <a href="http://lists.wikimedia.org/pipermail/mediawiki-announce/2011-November/000104.html">http://lists.wikimedia.org/pipermail/mediawiki-announce/2011-November/000104.html</a> [4] <a href="http://www.openwall.com/lists/oss-security/2011/11/29/6">http://www.openwall.com/lists/oss-security/2011/11/29/6</a> [5] <a href="https://bugs.gentoo.org/show_bug.cgi?id=392383">https://bugs.gentoo.org/show_bug.cgi?id=392383</a> Upstream patch (covering both of the issues): [6] <a href="http://www.mediawiki.org/wiki/Special:Code/MediaWiki/104506">http://www.mediawiki.org/wiki/Special:Code/MediaWiki/104506</a>
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
MediaWiki MediaWiki | <1.17.1 | |
Debian Debian Linux | =5.0 | |
Debian Debian Linux | =6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.