• IDP Daily Update #1254
  posted: 09/05/08
  
• NSM Daily Update #1254
  posted: 09/05/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1254
  posted: 09/05/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1252
  posted: 09/05/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 09/05/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Drupal Multiple Cross-Site Scripting Vulnerabilities

Severity: MODERATE

Description:

Drupal CMS is a content manager available for a number of platforms, including Microsoft Windows and UNIX/Linux variants.

Drupal is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Specifically, the following issues have been discovered:

- Multiple cross-site scripting vulnerabilities reside in the 'custom content type naming' portion of the application. A user with 'administer content types' permissions can inject and execute arbitrary HTML and script code.

- A cross-site scripting issue affects the 'PHP_SELF' variable. This issue allows a malicious user to inject and execute arbitrary HTML and script code in the context of a victim's browser session.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Versions prior to Drupal 4.7.7 and prior to Drupal 5.2 are vulnerable to these issues.

Affected Products:

• Drupal Drupal 4.7.0
• Drupal Drupal 4.7.1
• Drupal Drupal 4.7.2
• Drupal Drupal 4.7.3
• Drupal Drupal 4.7.3
• Drupal Drupal 4.7.4
• Drupal Drupal 4.7.4
• Drupal Drupal 4.7.5
• Drupal Drupal 4.7.6
• Drupal Drupal 5.0
• Drupal Drupal 5.1
• Drupal Drupal 5.1 revision 1.1

References:

• Drupal: Drupal security advisory DRUPAL-SA-2007-018
• Drupal: Vendor Homepage