GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Sat Sep 24, 2005 9:15 am Post subject: [ GLSA 200509-16 ] Mantis: XSS and SQL injection vulnerabili |
|
|
Gentoo Linux Security Advisory
Title: Mantis: XSS and SQL injection vulnerabilities (GLSA 200509-16)
Severity: normal
Exploitable: remote
Date: September 24, 2005
Bug(s): #103308
ID: 200509-16
Synopsis
Mantis is affected by an SQL injection and several cross-site scripting (XSS) vulnerabilities.
Background
Mantis is a web-based bugtracking system written in PHP.
Affected Packages
Package: www-apps/mantisbt
Vulnerable: < 0.19.2
Unaffected: >= 0.19.2
Architectures: All supported architectures
Description
Mantis fails to properly sanitize untrusted input before using it. This leads to an SQL injection and several cross-site scripting vulnerabilities.
Impact
An attacker could possibly use the SQL injection vulnerability to access or modify information from the Mantis database. Furthermore the cross-site scripting issues give an attacker the ability to inject and execute malicious script code or to steal cookie-based authentication credentials, potentially compromising the victim's browser.
Workaround
There is no known workaround at this time.
Resolution
All Mantis users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=www-apps/mantisbt-0.19.2" |
References
CAN-2005-2556
CAN-2005-2557
Secunia Advisory SA16506
Last edited by GLSA on Sun May 07, 2006 4:58 pm; edited 1 time in total |
|