CVE-2011-4321

The password reset functionality in Joomla! 1.5.x through 1.5.24 uses weak random numbers, which makes it easier for remote attackers to change the passwords of arbitrary users via unspecified vectors.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://developer.joomla.org/security/news/9-security/10-core-security/375-20111103-core-password-change
http://www.openwall.com/lists/oss-security/2011/11/21/1

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:joomla:joomla\!:1.5.0:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.1:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.2:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.3:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.4:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.5:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.6:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.7:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.8:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.9:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.10:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.11:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.12:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.13:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.14:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.15:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.15:rc::::::
	cpe:2.3:a:joomla:joomla\!:1.5.16:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.17:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.18:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.19:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.20:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.21:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.22:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.23:::::::*
	cpe:2.3:a:joomla:joomla\!:1.5.24:::::::*

History

No history.

Information

Published : 2011-11-23 18:55

Updated : 2011-11-28 05:00

NVD link : CVE-2011-4321

Mitre link : CVE-2011-4321

CVE.ORG link : CVE-2011-4321

JSON object : View

Products Affected

joomla

joomla\!

CWE

CWE-310

Cryptographic Issues

{"id": "CVE-2011-4321", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-11-23T18:55:01.170", "references": [{"url": "http://developer.joomla.org/security/news/9-security/10-core-security/375-20111103-core-password-change", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2011/11/21/1", "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-310"}]}], "descriptions": [{"lang": "en", "value": "The password reset functionality in Joomla! 1.5.x through 1.5.24 uses weak random numbers, which makes it easier for remote attackers to change the passwords of arbitrary users via unspecified vectors."}, {"lang": "es", "value": "La funcionalidad de reinicializaci\u00f3n de contrase\u00f1a en Joomla! v1.5.x hasta v1.5.24 utiliza n\u00fameros aleatorios d\u00e9biles, lo que hace m\u00e1s sencillo para atacantes remotos cambiar las contrase\u00f1as de usuarios de su elecci\u00f3n a trav\u00e9s de vectores no especificados."}], "lastModified": "2011-11-28T05:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65184BFE-A070-4099-B672-3A238E9F83EF"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "920129E4-F979-49B5-9B96-62BCBC3954D5"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1313BEAD-C0C0-4D8C-A3AA-F514BA6A1C92"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A90A8900-E441-46C4-A725-BA312358760E"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E74E276C-C62D-4828-89CB-80F526FEAEA5"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F370EA7F-3719-4D35-A7FD-C7AD1BD709D5"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4E48636-9EDB-49BB-ABC8-D79864BFCB38"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "580712F4-E97C-4E3F-BF9D-3445BEB4C3FE"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "466E5E84-4C69-49F2-83DA-FC86202DB7F4"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB968DF7-4A0B-474C-8639-06976837E03D"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B6BE010-649F-4E48-97DC-DDF7511406D5"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B8C4094-D028-4A55-B523-C90F5A4C9D82"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69FA6550-2135-4D41-B592-433FFFDEE180"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C73D78E0-BF24-433B-9F1B-03FD956C5779"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9BAC75B-DAC1-47E1-B9C9-48CF19489143"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BA97C8A-809D-44FC-95D2-5F269B6BF77D"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.15:rc:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9F607CF-AC49-4B13-96E5-B44191108CDA"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "883B3DC0-6D6C-4C21-BC2A-EE53C140D817"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7CFCF0F-BCD9-4215-817A-1409EA00CCBA"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D5CB72A-9B5F-42B2-BEE1-3F92C04FB335"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FDBBD33-63E0-4377-95ED-45FAA1EED3E7"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34B39FD1-44E2-43EC-B393-99E6208622B5"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F77BABA-7768-4F92-84C7-D247E4772749"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "487204D9-7A9F-4A44-B625-FDBE2807444A"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A5C8747-BF6A-4436-BC3A-A4B808AFF889"}, {"criteria": "cpe:2.3:a:joomla:joomla\\!:1.5.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "600F137D-4572-472E-B1E0-EF7A0A3ED443"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}