MediaWiki placeholder bypass security
| mediawiki-placeholder-bypass-security (23882) |  Medium Risk |
Description:
MediaWiki could allow a remote attacker to bypass security restrictions, caused by a vulnerability in an internal placeholder string. A remote attacker could exploit this vulnerability to bypass restrictions and inject arbitrary JavaScript, which would be executed in the victim's Web browser within the security context of the hosting site, once the malicious user-data is viewed.
Consequences:
Bypass Security
Remedy:
Upgrade to the latest version of MediaWiki (1.5.4 or later), available from the MediaWiki Download Web page. See References.
References:
- MediaWiki Download Web page: Download - Mediawiki.
- BID-16032: MediaWiki Inline Style Attribute Security Check Bypass Vulnerability
- CVE-2005-4501: MediaWiki before 1.5.4 uses a hard-coded internal placeholder string, which allows remote attackers to bypass protection against cross-site scripting (XSS) attacks and execute Javascript using inline style attributes, which are processed by Internet Explorer.
- SA18219: MediaWiki Hardcoded Placeholder String Security Bypass Vulnerability
- SUSE-SR:2006:003: SUSE Security Summary Report
- VUPEN/ADV-2005-3059: MediaWiki Hardcoded Placeholder String Security Bypass Vulnerability
Platforms Affected:
- Wikimedia Foundation MediaWiki 1.5.3 and prior
Reported:
Dec 22, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net