SB2014050202 - Multiple vulnerabilities in Plone

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Information disclosure (CVE-ID: CVE-2013-7060)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.

2) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2013-7061)

The vulnerability allows a remote #AU# to read and manipulate data.

Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive information via an unspecified search API.

Remediation

Install update from vendor's website.

References

• http://www.openwall.com/lists/oss-security/2013/12/10/15
• http://www.openwall.com/lists/oss-security/2013/12/12/3
• https://plone.org/security/20131210/path-leak
• https://plone.org/security/20131210/catalogue-exposure