CVE-2010-5104

The escapeStrForLike method in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 does not properly escape input when the MySQL database is set to sql_mode NO_BACKSLASH_ESCAPES, which allows remote attackers to obtain sensitive information via wildcard characters in a LIKE query.

Published Bysecalert@redhat.com

Published DateMay 21, 2012, 20:55

Affected Versions(3)

typo3/cms-core(Packagist)

Introduced4.2.0

Fixed4.2.16

LimitN/A

typo3/cms-core(Packagist)

Introduced4.3.0

Fixed4.3.9

LimitN/A

typo3/cms-core(Packagist)

Introduced4.4.0

Fixed4.4.5

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
typo3/cms-core(Packagist)	4.2.0	4.2.16	N/A
typo3/cms-core(Packagist)	4.3.0	4.3.9	N/A
typo3/cms-core(Packagist)	4.4.0	4.4.5	N/A

Weakness Type (CWE):CWE-200

CVSS Metrics

Base Score

4.3

Vector String

AV:N/AC:M/Au:N/C:P/I:N/A:N

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

NONE

Availability (A)

NONE

References

Weakness Type (CWE):CWE-200

CVSS Metrics

Base Score

4.3

Vector String

AV:N/AC:M/Au:N/C:P/I:N/A:N

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

NONE

Availability (A)

NONE