First published: Thu Jul 12 2012(Updated: )
The default configuration of the auth/saml plugin in Mahara before 1.4.2 sets the "Match username attribute to Remote username" option to false, which allows remote SAML IdP servers to spoof users of other SAML IdP servers by using the same internal username.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Debian | =6.0 | |
Mahara | <=1.4.1 | |
Mahara | =0.9.0 | |
Mahara | =0.9.1 | |
Mahara | =0.9.2 | |
Mahara | =1.0.0 | |
Mahara | =1.0.1 | |
Mahara | =1.0.2 | |
Mahara | =1.0.3 | |
Mahara | =1.0.4 | |
Mahara | =1.0.5 | |
Mahara | =1.0.6 | |
Mahara | =1.0.7 | |
Mahara | =1.0.8 | |
Mahara | =1.0.9 | |
Mahara | =1.0.10 | |
Mahara | =1.0.11 | |
Mahara | =1.0.12 | |
Mahara | =1.0.13 | |
Mahara | =1.0.14 | |
Mahara | =1.0.15 | |
Mahara | =1.1 | |
Mahara | =1.1.0 | |
Mahara | =1.1.0-alpha1 | |
Mahara | =1.1.0-alpha2 | |
Mahara | =1.1.0-alpha3 | |
Mahara | =1.1.0-beta1 | |
Mahara | =1.1.0-beta2 | |
Mahara | =1.1.0-beta3 | |
Mahara | =1.1.0-beta4 | |
Mahara | =1.1.0-rc1 | |
Mahara | =1.1.0-rc2 | |
Mahara | =1.1.1 | |
Mahara | =1.1.2 | |
Mahara | =1.1.3 | |
Mahara | =1.1.4 | |
Mahara | =1.1.5 | |
Mahara | =1.1.6 | |
Mahara | =1.1.7 | |
Mahara | =1.1.8 | |
Mahara | =1.1.9 | |
Mahara | =1.2.0 | |
Mahara | =1.2.0-alpha1 | |
Mahara | =1.2.0-alpha2 | |
Mahara | =1.2.0-alpha3 | |
Mahara | =1.2.0-beta1 | |
Mahara | =1.2.0-beta2 | |
Mahara | =1.2.0-beta3 | |
Mahara | =1.2.0-beta4 | |
Mahara | =1.2.0-rc1 | |
Mahara | =1.2.1 | |
Mahara | =1.2.2 | |
Mahara | =1.2.3 | |
Mahara | =1.2.4 | |
Mahara | =1.2.5 | |
Mahara | =1.2.6 | |
Mahara | =1.3.0 | |
Mahara | =1.3.0-beta1 | |
Mahara | =1.3.0-beta2 | |
Mahara | =1.3.0-beta3 | |
Mahara | =1.3.0-beta4 | |
Mahara | =1.3.0-rc1 | |
Mahara | =1.3.1 | |
Mahara | =1.3.2 | |
Mahara | =1.3.3 | |
Mahara | =1.3.4 | |
Mahara | =1.3.5 | |
Mahara | =1.3.6 | |
Mahara | =1.3.7 | |
Mahara | =1.3.8 | |
Mahara | =1.4-rc1 | |
Mahara | =1.4-rc2 | |
Mahara | =1.4-rc3 | |
Mahara | =1.4-rc4 | |
Mahara | =1.4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2012-2351 is considered to have a medium severity level due to potential user impersonation risks.
To fix CVE-2012-2351, update Mahara to version 1.4.2 or later where the "Match username attribute to Remote username" option is correctly configured.
CVE-2012-2351 affects all versions of Mahara prior to 1.4.2, including versions 1.0.0 to 1.4.1.
The impact of CVE-2012-2351 allows attackers to spoof users from different SAML IdP servers if they have the same internal username.
Yes, CVE-2012-2351 is a remote vulnerability that allows exploitation from networked environments without local access.