Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-1051

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2015-1051
Last Modified 17 Apr 2015 10:00:09
Published 15 Jan 2015 10:59:31
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-1051

Summary

Open redirect vulnerability in the Context UI module in the Context module 7.x-3.x before 7.x-3.6 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination parameter.

Vulnerable Systems

Application

  • Context Project Context 7.x-3.0

  • Context Project Context 7.x-3.1

  • Context Project Context 7.x-3.2

  • Context Project Context 7.x-3.3

  • Context Project Context 7.x-3.4

  • Context Project Context 7.x-3.5


References

MISC - https://www.drupal.org/node/2403351

CONFIRM - https://www.drupal.org/node/2402779

BID - 71925

FEDORA - FEDORA-2015-0726

FEDORA - FEDORA-2015-0717


Last Updated: 27 May 2016 11:07:34