Main Vulnerability Database Vulnerabilities #VU399

Open redirect - CVE-2016-3167

Published: September 9, 2016

Vulnerability identifier: #VU399

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2016-3167

CWE-ID: CWE-601

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor:

Affected software:

Detailed vulnerability description

The vulnerability allows attackers to perform open redirection attacks and get access to potentially sensitive information.

The vulnerability is caused by incorrect decoding of the $_REQUEST['destination'] contents by drupal_goto() function before using it. A malicious user can easily bypass protection and initiate open redirection to an arbitrary external URL.

Successful exploitation of this vulnerability results in gaining access to potentially sensitive information by remote attacker.

How to mitigate CVE-2016-3167

Upgrade Drupal 6.x to Drupal core 6.38.

Upgrade Drupal 7.x to Drupal core 7.43.

Upgrade Drupal 8.0.x to Drupal core 8.0.4.

Sources

https://www.drupal.org/project/drupal

Open redirect - CVE-2016-3167

Detailed vulnerability description

How to mitigate CVE-2016-3167

Sources

Please verify you're human