Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4911

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-4911
Last Modified 08 Oct 2012 12:00:00
Published 07 Oct 2012 05:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4911

Summary

Joomla! before 1.5.12 does not perform a JEXEC check in unspecified files, which allows remote attackers to obtain the installation path via unspecified vectors.

Vulnerable Systems

Application

  • Joomla%21 1.5.0

  • Joomla%21 1.5.1

  • Joomla%21 1.5.10

  • Joomla%21 1.5.11

  • Joomla%21 1.5.2

  • Joomla%21 1.5.3

  • Joomla%21 1.5.4

  • Joomla%21 1.5.5

  • Joomla%21 1.5.6

  • Joomla%21 1.5.7

  • Joomla%21 1.5.8

  • Joomla%21 1.5.9


References

BID - 35544

OSVDB - 55591

MLIST - [oss-security] 20111225 Re: CVE-request for three 2009 Joomla issues (second part)

MLIST - [oss-security] 20111225 CVE-request for three 2009 Joomla issues (second part)

SECUNIA - 35668

CONFIRM - http://developer.joomla.org/security/news/300-20090606-core-missing-jexec-check.html


Last Updated: 27 May 2016 11:00:53