Debian Security Advisory DSA 2957-1 (mediawiki - Security Update) Network Vulnerability

Summary

Omer Iqbal discovered that Mediawiki, a wiki engine, parses invalid usernames on Special:PasswordReset as wikitext when $wgRawHtml is enabled. On such wikis this allows an unauthenticated attacker to insert malicious JavaScript, a cross site scripting attack.

Solution

For the stable distribution (wheezy), this problem has been fixed in version 1:1.19.16+dfsg-0+deb7u1. For the unstable distribution (sid), this problem has been fixed in version 1:1.19.16+dfsg-1. We recommend that you upgrade your mediawiki packages.

Insight

MediaWiki is a wiki engine (a program for creating a collaboratively edited website). It is designed to handle heavy websites containing library-like document collections, and supports user uploads of images/sounds, multilingual content, TOC autogeneration, ISBN links, etc.

Affected

mediawiki on Debian Linux

Detection

This check tests the installed software version using the apt package manager.

References

http://www.debian.org/security/2014/dsa-2957.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-3966
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Debian Security Advisory DSA 2957-1 (mediawiki - security update)

Take action and discover your vulnerabilities