Arbitrary code execution in Drupal - #VU560
Published: September 20, 2016
Vulnerability identifier: #VU560
CSH Severity: High
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/U:Amber
CVE-ID: N/A
CWE-ID: CWE-284
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Drupal
Drupal
Software vendor:
Drupal
Drupal
Description
The vulnerability allows authenticated user to cause arbitary code execution on the target system.
The weakness exists due to validation errors. Attackers can get "post comments" permission and access to more than one input filter that allows them to execute arbitrary code.
Successful exploiatation of the vulnerability leads to arbitrary code execution on the vulnerable system.
The weakness exists due to validation errors. Attackers can get "post comments" permission and access to more than one input filter that allows them to execute arbitrary code.
Successful exploiatation of the vulnerability leads to arbitrary code execution on the vulnerable system.
Remediation
Update 4.7.x to 4.7.6.
http://ftp.osuosl.org/pub/drupal/files/projects/drupal-4.7.6.tar.gz
Update 5.x to 5.1.
http://ftp.osuosl.org/pub/drupal/files/projects/drupal-5.1.tar.gz
http://ftp.osuosl.org/pub/drupal/files/projects/drupal-4.7.6.tar.gz
Update 5.x to 5.1.
http://ftp.osuosl.org/pub/drupal/files/projects/drupal-5.1.tar.gz