Vulnerabilidad en Drupal (CVE-2011-4113)

Tipo: 
Inyección SQL
Gravedad: 
Alta
Fecha publicación : 
17/02/2012
Última modificación: 
29/02/2012
Descripción
Vulnerabilidad de inyección SQL en el módulo Views antes de v6.x-2.13 para Drupal permite a atacantes remotos ejecutar comandos SQL a través de vectores relacionados con "filtros o argumentos en ciertos tipos de vistas con configuraciones específicas de los argumentos."
Impacto
Vector de acceso: A través de red
Complejidad de Acceso: Baja
Autenticación: No requerida para explotarla
Tipo de impacto: Afecta parcialmente a la integridad del sistema + Afecta parcialmente a la confidencialidad del sistema + Afecta parcialmente a la disponibilidad del sistema
Productos y versiones vulnerables
  • Earl Miles Views 6.x-2.x Dev
  • Earl Miles Views 6.x-2.9
  • Earl Miles Views 6.x-2.8
  • Earl Miles Views 6.x-2.7
  • Earl Miles Views 6.x-2.6
  • Earl Miles Views 6.x-2.5
  • Earl Miles Views 6.x-2.4
  • Earl Miles Views 6.x-2.3
  • Earl Miles Views 6.x-2.2
  • Earl Miles Views 6.x-2.12
  • Earl Miles Views 6.x-2.11
  • Earl Miles Views 6.x-2.10
  • Earl Miles Views 6.x-2.1
  • Earl Miles Views 6.x-2.0 Rc5
  • Earl Miles Views 6.x-2.0 Rc4
  • Earl Miles Views 6.x-2.0 Rc3
  • Earl Miles Views 6.x-2.0 Rc2
  • Earl Miles Views 6.x-2.0 Rc1
  • Earl Miles Views 6.x-2.0 Beta4
  • Earl Miles Views 6.x-2.0 Beta3
  • Earl Miles Views 6.x-2.0 Beta2
  • Earl Miles Views 6.x-2.0 Beta1
  • Earl Miles Views 6.x-2.0 Alpha5
  • Earl Miles Views 6.x-2.0 Alpha4
  • Earl Miles Views 6.x-2.0 Alpha3
  • Earl Miles Views 6.x-2.0 Alpha2
  • Earl Miles Views 6.x-2.0 Alpha1
  • Earl Miles Views 6.x-2.0
  • Earl Miles Views 5.x-1.x Dev
  • Earl Miles Views 5.x-1.8
  • Earl Miles Views 5.x-1.7
  • Earl Miles Views 5.x-1.6 Beta5
  • Earl Miles Views 5.x-1.6 Beta4
  • Earl Miles Views 5.x-1.6 Beta3
  • Earl Miles Views 5.x-1.6 Beta2
  • Earl Miles Views 5.x-1.6 Beta
  • Earl Miles Views 5.x-1.6
  • Earl Miles Views 5.x-1.5
  • Earl Miles Views 5.x-1.4 Rc1
  • Earl Miles Views 5.x-1.4-2 Rc1
  • Earl Miles Views 5.x-1.3 Beta1
  • Earl Miles Views 5.x-1.2 Beta1
  • Earl Miles Views 5.x-1.1 Beta
  • Earl Miles Views 5.x-1.0
  • Earl Miles Views 4.7.x1.5
  • Earl Miles Views 4.7.x-1.x Dev
  • Earl Miles Views 4.7.x-1.6 Beta5
  • Earl Miles Views 4.7.x-1.6 Beta3
  • Earl Miles Views 4.7.x-1.6 Beta2
  • Earl Miles Views 4.7.x-1.6 Beta
  • Earl Miles Views 4.7.x-1.6
  • Earl Miles Views 4.7.x-1.4.2
  • Earl Miles Views 4.7.x-1.4
  • Earl Miles Views 4.7.x-1.3
  • Earl Miles Views 4.7.x-1.2
  • Earl Miles Views 4.7.x-1.1
  • Earl Miles Views 4.7.x-1.0
Explicación de los campos