Multiple vulnerabilities in Moodle
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2011-4588 CVE-2011-4585 |
| CWE-ID | CWE-264 CWE-16 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Moodle Web applications / Other software |
| Vendor | moodle.org |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU43825
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2011-4588
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to manipulate data.
The ip_in_range function in mnet/lib.php in MNET in Moodle 1.9.x before 1.9.15 uses an incorrect data type, which allows remote attackers to bypass intended IP address restrictions via an XMLRPC request.
MitigationInstall update from vendor's website.
Vulnerable software versionsMoodle: 1.9 - 1.9.14
CPE2.3- cpe:2.3:a:moodle_org:moodle:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.5:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.6:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.8:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.9:*:*:*:*:*:*:*
https://git.moodle.org/gw?p=moodle.git;a=commit;h=3ab2851d2a59721445945d0706c58092e07e861e
https://moodle.org/mod/forum/discuss.php?d=191756
https://www.debian.org/security/2012/dsa-2421
https://bugzilla.redhat.com/show_bug.cgi?id=761248
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Configuration
EUVDB-ID: #VU43835
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2011-4585
CWE-ID:
CWE-16 - Configuration
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
login/change_password.php in Moodle 1.9.x before 1.9.15 does not use https for the change-password form even if the httpslogin option is enabled, which allows remote attackers to obtain credentials by sniffing the network.
MitigationInstall update from vendor's website.
Vulnerable software versionsMoodle: 1.9 - 1.9.14
CPE2.3- cpe:2.3:a:moodle_org:moodle:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.5:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.6:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.8:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.9:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:1.9.10:*:*:*:*:*:*:*
https://git.moodle.org/gw?p=moodle.git;a=commit;h=01dd64a8c8aa95f793accea371b2392e662663c5
https://moodle.org/mod/forum/discuss.php?d=191752
https://www.debian.org/security/2012/dsa-2421
https://bugzilla.redhat.com/show_bug.cgi?id=761248
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
