796984 – (CVE-2012-0453) CVE-2012-0453 bugzilla: CSRF fixed in 4.0.5, 4.2

Bug 796984 (CVE-2012-0453) - CVE-2012-0453 bugzilla: CSRF fixed in 4.0.5, 4.2

Summary: CVE-2012-0453 bugzilla: CSRF fixed in 4.0.5, 4.2

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2012-0453
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	796985
Blocks:
TreeView+	depends on / blocked

Reported:	2012-02-24 00:38 UTC by Kurt Seifried
Modified:	2019-09-29 12:50 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2012-12-11 08:33:54 UTC
Embargoed:

Attachments	(Terms of Use)

Description Kurt Seifried 2012-02-24 00:38:43 UTC

Upstream has released [1] versions 4.0.5, 4.2 to correct a CSRF vulnerability

Due to a lack of validation of the enctype form attribute when making POST requests to xmlrpc.cgi, a possible CSRF vulnerability was discovered. If a user visits an HTML page with some malicious HTML code in it, an attacker could make changes to a remote Bugzilla installation on behalf of the victim's account by using the XML-RPC API on a site running mod_perl. Sites running under mod_cgi are not affected. Also the user would have had to be already logged in to the target site for the vulnerability to work.

References:  https://bugzilla.mozilla.org/show_bug.cgi?id=725663

[1] http://www.bugzilla.org/security/4.0.4/

Comment 1 Kurt Seifried 2012-02-24 00:40:12 UTC

Created bugzilla tracking bugs for this issue

Affects: fedora-all [bug 796985]

Comment 2 Fedora Update System 2012-03-06 19:41:54 UTC

bugzilla-4.0.5-1.fc16 has been pushed to the Fedora 16 stable repository.  If problems still persist, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.