CVE-2011-1766Improper Authentication in Mediawiki

CWE-287Improper Authentication4 documents4 sources
Severity
5.8MEDIUMNVD
EPSS
0.3%
top 43.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
MediawikiDebian Mediawiki
Timeline
PublishedMay 23
Latest updateMay 17

Description

includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is enabled, does not clear certain cached data after verification of an auth token fails, which allows remote attackers to bypass authentication by creating crafted wikiUserID and wikiUserName cookies, or by leveraging an unattended workstation.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

NVDmediawiki/mediawiki1.16.4+112

Patches

Patch: lists.wikimedia.orgPatch: bugzilla.redhat.comPatch: bugzilla.wikimedia.org

🔴Vulnerability Details

1
GHSA
GHSA-m9hp-7333-625v: includes/User2022-05-17

📋Vendor Advisories

1
Debian
CVE-2011-1766: mediawiki - includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is enabl...2011

💬Community

1
Bugzilla
CVE-2011-1765 mediawiki: two vulnerabilities fixed in 1.16.52011-05-05
CVE-2011-1766 — Improper Authentication in Mediawiki | cvebase