CVE-2014-3704

Sažetak

The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared statements, which allows remote attackers to conduct SQL injection attacks via an array containing crafted keys.

Reference

http://www.openwall.com/lists/oss-security/2014/10/15/23
https://www.drupal.org/SA-CORE-2014-005
https://www.sektioneins.de/en/advisories/advisory-012014-drupal-pre-auth-sql-injection-vulnerability.html
http://www.debian.org/security/2014/dsa-3051
http://secunia.com/advisories/59972
http://www.exploit-db.com/exploits/34993
http://packetstormsecurity.com/files/128741/Drupal-HTTP-Parameter-Key-Value-SQL-Injection.html
http://packetstormsecurity.com/files/128721/Drupal-7.31-SQL-Injection.html
http://www.securityfocus.com/bid/70595
http://seclists.org/fulldisclosure/2014/Oct/75
http://packetstormsecurity.com/files/128720/Drupal-7.X-SQL-Injection.html
https://www.sektioneins.de/en/blog/14-11-03-drupal-sql-injection-vulnerability-PoC.html
http://osvdb.org/show/osvdb/113371
http://www.exploit-db.com/exploits/34984
http://www.exploit-db.com/exploits/34992
http://www.exploit-db.com/exploits/35150
http://www.securityfocus.com/archive/1/533706/100/0/threaded

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-09-2021 - 14:08

Objavljeno

16-10-2014 - 00:55