Moodle
===========================================================
Ubuntu Security Notice USN-791-1 June 24, 2009
moodle vulnerabilities
CVE-2007-3215, CVE-2008-4796, CVE-2008-4810, CVE-2008-4811,
CVE-2008-5153, CVE-2008-5432, CVE-2008-5619, CVE-2008-6124,
CVE-2009-0499, CVE-2009-0500, CVE-2009-0501, CVE-2009-0502,
CVE-2009-1171, CVE-2009-1669
===========================================================
A security issue affects the following Ubuntu releases:
Moodle 1.9.3 Remote Code Execution
Name Remote Code Execution in Moodle
Systems Affected Moodle 1.9.3 and possibly earlier versions
Severity High
Impact (CVSSv2) High 7.3/10, vector: (AV:N/AC:L/Au:M/C:P/I:P/A:C)
Vendor http://moodle.org/
Advisory http://www.ush.it/team/ush/hack-moodle193/moodle193.txt
Authors Antonio "s4tan" Parata (s4tan AT ush DOT it)
Francesco "ascii" Ongaro (ascii AT ush DOT it)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
PR08-16: CSRF (Cross-site Request Forgery) on Moodle edit profile page
Vulnerability found: 25/06/2008
Vendor informed: 28/06/2008
Vulnerability fixed: 16/07/2008
Debian Security Advisory DSA-1691-1 security@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
December 22, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : moodle
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2007-3555 CVE-2008-1502 CVE-2008-3325 CVE-2008-3326
CVE-2008-4796 CVE-2008-4810 CVE-2008-4811 CVE-2008-5432
Moodle File Disclosure Vulnerability
Systems Affected Moodle series <1.6.9+, <1.7.7+, <1.8.9, <1.9.5
Severity Critical
Probability of being vulnerable Rather Low
Vendor http://moodle.org/
Filed Bug #MDL-18552
Author Christian J. Eibl
Date 20090327
Debian Security Advisory DSA-1986-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
February 02, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : moodle
Vulnerability : several vulnerabilities
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2009-4297 CVE-2009-4298 CVE-2009-4299 CVE-2009-4301
CVE-2009-4302 CVE-2009-4303 CVE-2009-4305
===========================================================
Ubuntu Security Notice USN-658-1 October 23, 2008
moodle vulnerability
CVE-2008-1502, CVE-2008-1502
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 7.10
Ubuntu 8.04 LTS
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
PR08-15: Several Webroot Disclosures on Moodle
Vulnerability found: 20/06/2008
Vendor informed: 25/06/2008
Vulnerability fixed: 16/07/2008
Debian Security Advisory DSA-2115-1 security@debian.org
http://www.debian.org/security/ Florian Weimer
September 29, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : moodle
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2010-1613 CVE-2010-1614 CVE-2010-1615 CVE-2010-1616 CVE-2010-1617 CVE-2010-1618 CVE-2010-1619 CVE-2010-2228 CVE-2010-2229 CVE-2010-2230 CVE-2010-2231
Debian Security Advisory DSA-2115-2 security@debian.org
http://www.debian.org/security/ Florian Weimer
October 11, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : moodle
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2010-1613 CVE-2010-1614 CVE-2010-1615 CVE-2010-1616 CVE-2010-1617 CVE-2010-1618 CVE-2010-1619 CVE-2010-2228 CVE-2010-2229 CVE-2010-2230 CVE-2010-2231
===========================================================
Ubuntu Security Notice USN-791-2 June 24, 2009
moodle vulnerability
CVE-2009-1171
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 9.04
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
PR08-13: Persistent Cross-site Scripting (XSS) on Moodle via blog entry
title
Vulnerability found: 20/06/2008
Vendor informed: 25/06/2008
Source URL of this announcement:
http://int21.de/cve/CVE-2008-0123-moodle.html
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0123
Description
Moodle is a course management system for educators.
The installer code is vulnerable to Cross Site Scripting, letting you inject
JavaScript and steal cookies. The XSS can only be triggered if there's a not
Debian Security Advisory DSA-1761-1 security@debian.org
http://www.debian.org/security/ Nico Golde
April 3rd, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------
Package : moodle
Vulnerability : missing input sanitization
Problem type : remote
Debian-specific: no
CVE ID : CVE-2009-1171
Debian Bug : 522116
Debian Security Advisory DSA 1724-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
February 13th, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------
Package : moodle
Vulnerability : several vulnerabilities
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2009-0500 CVE-2009-0502 CVE-2008-5153
Debian Bug : 514284
==========================================
During internal code review performed by Allegro.pl, some weaknesses
were discovered in kses - PHP HTML/XHTML filter. HTML filters using or
based on kses are part of many popular projects, including WordPress,
Moodle, Drupal, eGroupWare, Dokeos, PHP-Nuke, Geeklog and others. Issues
found range from cross-site scripting to code execution, depending on
implementation.
Kses filters HTML by whitelisting allowed tags, attributes, and
protocols in attribute values. Additionally, it normalizes HTML entities
MRBS isn't part of Moodle. It's a third-party program.
Similar hacks have been discussed here:
http://moodle.org/mod/forum/discuss.php?d=111710#p490453
Affected sites seem to be all running PHP with register_global turned on, which is a really bad idea and not recommended by Moodle.
there is one mrbs contrib block for Moodle too.
Anyway, the missing input validation has been fixed some hours ago in code:
http://cvs.moodle.org/contrib/plugins/blocks/mrbs/web/
Problem Description:
A vulnerability has been found and corrected in egroupware:
The _bad_protocol_once function in phpgwapi/inc/class.kses.inc.php
in KSES, as used in eGroupWare before 1.4.003, Moodle before 1.8.5,
and other products, allows remote attackers to bypass HTML filtering
and conduct cross-site scripting (XSS) attacks via a string containing
crafted URL protocols (CVE-2008-1502).
This update fixes this vulnerability.
|
