French Security Incident Response Team

FrSIRT   

      

   français French  anglais English

 
Vulnerability Notification Service
 FrSIRT Partner Program
 14-Day Free Trial
Contact FrSIRT Sales Dept.
 

Security Advisories
Linux Security Advisories
Virus and Threats Advisories
Latest Security News
Latest Zero Day Threats
Advisories and vulnerabilities by Vendor
Advisories and vulnerabilities by Keyword
 

Report a security incident
Report a new vulnerability
Security Mailinglist
 

Our Company
FrSIRT in the News
Advertise on FrSIRT.COM
Security Researchers and Exploit Writers Jobs
Contact Us

Fedora Security Update Fixes Moodle Cross Site Scripting Vulnerability

Title : Fedora Security Update Fixes Moodle Cross Site Scripting Vulnerability
Advisory ID : FrSIRT/ADV-2008-0167
CVE ID : CVE-2008-0123
Rated as : Low Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-01-16

Advisory Details
 
  Description
  Affected Products
  Solution
  References
Technical Description    Receive FrSIRT alerts in a Text format  Receive FrSIRT alerts in a PDF format  Receive FrSIRT alerts in an XML format  Receive FrSIRT notifications by SMS 

A vulnerability has been identified in Fedora, which could be exploited by attackers to execute arbitrary scripting code [...]

Solution

Upgrade the affected packages :

cd95c150ef40e235bae26a997ed8386985265020 moodle-zh_tw-1.8.4-1.fc8.noarch.rpm
6c7d484cfc50f7b2c990f78f0fd6efa6364bd4fb moodle-zh_cn-1.8.4-1.fc8.noarch.rpm
a1eed1fcc9e634aff00f22ac085592316f0cc2c5 moodle-vi-1.8.4-1.fc8.noarch.rpm
1b234cd2c7e4ef95c3f01aef737b98f29122a560 moodle-uk-1.8.4-1.fc8.noarch.rpm
f7091529ed6a0b07b5c937a67ba839ce652be5d2 moodle-tr-1.8.4-1.fc8.noarch.rpm
d6bc1692fa573a48e2f22922ee6286242d264752 moodle-to-1.8.4-1.fc8.noarch.rpm
17fa3db91d5335ce873f659f0f033e279dce3464 moodle-tl-1.8.4-1.fc8.noarch.rpm
f933f0916687d6d6c40b1311ada383b924114b58 moodle-th-1.8.4-1.fc8.noarch.rpm
c3a261119bfba11555fb45086fd9dd0f2351760f moodle-ta_lk-1.8.4-1.fc8.noarch.rpm
661a310ba350f496e9f1f4ce256f5d7d5a5a2e30 moodle-ta-1.8.4-1.fc8.noarch.rpm
a7db04e2237e21f5d4e7d263efca6d3bfe83cddb moodle-sv-1.8.4-1.fc8.noarch.rpm
0c646f8174b1b410ee0c6083292eada6550f3c01 moodle-sr_lt-1.8.4-1.fc8.noarch.rpm
2b44c163242d3e0f668ed3cd0782e01a8220fda2 moodle-sr_cr_bo-1.8.4-1.fc8.noarch.rpm
c930cdb4dfe272b246e860ec6afa2a3b3bad725c moodle-sr_cr-1.8.4-1.fc8.noarch.rpm
3b1b61a121710b054811b7d697bc57856cffac5b moodle-sq-1.8.4-1.fc8.noarch.rpm
1e3914e70d2dd646bb2d40c28ce28a306892632a moodle-so-1.8.4-1.fc8.noarch.rpm
5d5661d469064d0c4bc4816a3d8a19c86c41f650 moodle-sm-1.8.4-1.fc8.noarch.rpm
e1db52466c18c6226ac86dadb300eeb6c1b1d8bb moodle-sl-1.8.4-1.fc8.noarch.rpm
535383954da6a85cc5191f35b59afd22ed01f33f moodle-sk-1.8.4-1.fc8.noarch.rpm
e52295b998967edcb9414f81b9bf2f1f4f5949d9 moodle-si-1.8.4-1.fc8.noarch.rpm
f82716d40df05ad92945c5935676af8f4fc1f7c2 moodle-ru-1.8.4-1.fc8.noarch.rpm
903c33a393af3a688959a5e5499f5aee19950525 moodle-ro-1.8.4-1.fc8.noarch.rpm
ecb5e7740319db5e26574dd8a77bd365df259477 moodle-pt_br-1.8.4-1.fc8.noarch.rpm
055c3bea47bba2c21328183270adb322b8dc530f moodle-pt-1.8.4-1.fc8.noarch.rpm
2544d34edb495e6fd75ef4fbfd60a11640be0d0f moodle-pl-1.8.4-1.fc8.noarch.rpm
fb62869930cefb102bfc8126179bec15a3162029 moodle-no_gr-1.8.4-1.fc8.noarch.rpm
2868620e6d4b77d56e21e242133b015831ac57ba moodle-no-1.8.4-1.fc8.noarch.rpm
cb17ac85f23ba3af706d2c65092c6c876f878d82 moodle-nn-1.8.4-1.fc8.noarch.rpm
cc0ddb5a0563a55d329d36559bd1cc5a534a54cc moodle-nl-1.8.4-1.fc8.noarch.rpm
0c63618b8752d9e68a8227f2e0d01a42247d0419 moodle-ms-1.8.4-1.fc8.noarch.rpm
a9a568fdf94a547c5739b71359af8a6f6727cb76 moodle-mn-1.8.4-1.fc8.noarch.rpm
4e7a2ce48a84cde4243272ecca4840cbafa7dc43 moodle-ml-1.8.4-1.fc8.noarch.rpm
57576d4eb1765496fcfda5a51843797f31be83b4 moodle-mk-1.8.4-1.fc8.noarch.rpm
db82c62b74d91b080df99f6b802f2d0cdcca6c4e moodle-mi_wwow-1.8.4-1.fc8.noarch.rpm
e7c30bbadf3ebb60f41b8e518f2f3f18ea936232 moodle-mi_tn-1.8.4-1.fc8.noarch.rpm
e46588431e1e0af4ef2268d883a4f9b1f4ea9612 moodle-lv-1.8.4-1.fc8.noarch.rpm
26c57801e5b1a0e5937b08912f04d63f5bf10d2f moodle-lt-1.8.4-1.fc8.noarch.rpm
eeca0febfe9cf75e8888931bdccadb673c2d691d moodle-lo-1.8.4-1.fc8.noarch.rpm
4efbe0785a0919faf445ac974a04da5a52dfb01c moodle-ko-1.8.4-1.fc8.noarch.rpm
c2b668f6c7dc1c03bac6acd686dcdee89a814979 moodle-kn-1.8.4-1.fc8.noarch.rpm
f2ff2fa6077a1048e7cf261bf9b3db86ee05e5a4 moodle-km-1.8.4-1.fc8.noarch.rpm
30fd93910113258349d70074cd56f032cfa27794 moodle-ka-1.8.4-1.fc8.noarch.rpm
6b790021ff3f11378d5a5e093b67885f7852b78f moodle-ja-1.8.4-1.fc8.noarch.rpm
ec92695656593ae6da2abedca547f5d322a0a11f moodle-it-1.8.4-1.fc8.noarch.rpm
ca1fc87e637ea64ba1452045817db0bb0e8e2143 moodle-is-1.8.4-1.fc8.noarch.rpm
69db2bead38328dda6317b2d1e6bc45505a86541 moodle-id-1.8.4-1.fc8.noarch.rpm
e9a9d018269bc53a11799c15b52cde3ae966d434 moodle-hy-1.8.4-1.fc8.noarch.rpm
c92075f58eb455347738c1586ac2128a31f3ada8 moodle-hu-1.8.4-1.fc8.noarch.rpm
66cdbb760d3f84c5ce7d5d6188498ae3e622aa52 moodle-hr-1.8.4-1.fc8.noarch.rpm
22dcf7320ccddc8a00647322bbbce26d7ca22ec9 moodle-hi-1.8.4-1.fc8.noarch.rpm
17779bfa898c28c7d484af4b6c96cf887cfe6aab moodle-he-1.8.4-1.fc8.noarch.rpm
531a853979889f99b2de279c7ea8c56da415d11a moodle-gu-1.8.4-1.fc8.noarch.rpm
83a0cd368a4dd67efee4c173447fdc18cafd1d1e moodle-gl-1.8.4-1.fc8.noarch.rpm
349b473a6e201773b647ef097a43e81833ee43ae moodle-ga-1.8.4-1.fc8.noarch.rpm
6e60309216673a1130831de46ce1418b6882371e moodle-fr_ca-1.8.4-1.fc8.noarch.rpm
c161bc5b949b79b1dbe71c013b995f3171d73670 moodle-fr-1.8.4-1.fc8.noarch.rpm
93ddaba7e09530c4945da94b3ec95b205ba6b80f moodle-fil-1.8.4-1.fc8.noarch.rpm
e5f9543ba5df6af9ccdf9be34e5845ca8336204e moodle-fi-1.8.4-1.fc8.noarch.rpm
8a5505cc3fb8301b6d206445eea550ab3da269d6 moodle-fa-1.8.4-1.fc8.noarch.rpm
a7827bfb6082cce90388bd1e3995784ddbd9a7dc moodle-eu-1.8.4-1.fc8.noarch.rpm
6689f68416e06ef097f64d629841b8d1bc67f3aa moodle-et-1.8.4-1.fc8.noarch.rpm
465fbf3cd060056e5b6bac65fea31948d552164f moodle-es-1.8.4-1.fc8.noarch.rpm
bcdb629efb5bb5f24e1e808d804fd7ed0ce7683f moodle-el-1.8.4-1.fc8.noarch.rpm
6944890d4b4d2d2d991256b9d0f4694b9ab53ea5 moodle-de_du-1.8.4-1.fc8.noarch.rpm
60497557707dc4d281286feb19d697f754e4e082 moodle-de-1.8.4-1.fc8.noarch.rpm
5aff94ce8a718a29ad5480803613a54078731563 moodle-da-1.8.4-1.fc8.noarch.rpm
d017f6fee48ea62f8589a1d242ecbfc5ff79558e moodle-cs-1.8.4-1.fc8.noarch.rpm
3c36be6951811520f7e860b12dfcbb840a5d755a moodle-ca-1.8.4-1.fc8.noarch.rpm
c752f03da8bc9ed33984af97f6872f38c3e447c4 moodle-bs-1.8.4-1.fc8.noarch.rpm
c1145664be6fc3d1ab61e8abd9802795ab941a6b moodle-bg-1.8.4-1.fc8.noarch.rpm
072ea16d90190c58df9fa516194ff0e38e8bd19d moodle-be-1.8.4-1.fc8.noarch.rpm
4d6178808264c8f415e6e674b67cbd9e95534a84 moodle-ar-1.8.4-1.fc8.noarch.rpm
f36edf72419c1de87ddd39661fd0176e70b0bb51 moodle-af-1.8.4-1.fc8.noarch.rpm
c6de657181148edfa64f9eabbc92b24c531a41a2 moodle-1.8.4-1.fc8.noarch.rpm
513d1dce0b5fa87f98527769e78736bbf8a7aebc moodle-1.8.4-1.fc8.src.rpm

7e29dea10c6ab2e06369901cbfce7867b7bd8c96 moodle-zh_tw-1.8.4-1.fc7.noarch.rpm
082e628a9a82a35cffc02899a1e2501b76f44cb0 moodle-zh_cn-1.8.4-1.fc7.noarch.rpm
a8762bb0a1aa83da9b92271d01a3e228d1dcf3b8 moodle-vi-1.8.4-1.fc7.noarch.rpm
33867d8cc4cbcd9ff19ff76b60e6bd7d9cb4dc95 moodle-uk-1.8.4-1.fc7.noarch.rpm
37c63df4d4760fde57757efd099ff909229d6987 moodle-tr-1.8.4-1.fc7.noarch.rpm
dd24795e50b2abce92f7c9ae775f65e3cdb21ceb moodle-to-1.8.4-1.fc7.noarch.rpm
6a6384766b8c44c59ebda5e132e56df68e056914 moodle-tl-1.8.4-1.fc7.noarch.rpm
5a31fd2436b93ae7f10cb75a7abac2e3ef13b53b moodle-th-1.8.4-1.fc7.noarch.rpm
1a5fec12778d3c4519eb1e9b901030b23daa013e moodle-ta_lk-1.8.4-1.fc7.noarch.rpm
ea569157b84afedce053a3dec087a84742921d04 moodle-ta-1.8.4-1.fc7.noarch.rpm
e7cdbd92ac114af97b0d273bc31491b9be52c815 moodle-sv-1.8.4-1.fc7.noarch.rpm
3f360269aebd3cef6e47133b8da9d2bfd724adf8 moodle-sr_lt-1.8.4-1.fc7.noarch.rpm
cb7ee63a75afd7f8a2fd432f673ce385c65a8fb5 moodle-sr_cr_bo-1.8.4-1.fc7.noarch.rpm
5a65c6083cb7e9b64422f622e7f6109234c04f2e moodle-sr_cr-1.8.4-1.fc7.noarch.rpm
a49eeecf43bd1f0620cecb7a027390b9daea189a moodle-sq-1.8.4-1.fc7.noarch.rpm
0e3bae64e4b425883147f87ba81f3c33740b1dab moodle-so-1.8.4-1.fc7.noarch.rpm
88d582beec65f5cfb4046808adcd62a398e76062 moodle-sm-1.8.4-1.fc7.noarch.rpm
866ea853b79c6840c0ec5bad847fec3b35127766 moodle-sl-1.8.4-1.fc7.noarch.rpm
d5deda2a4d171e5a72269f75abda1c7108fa93f6 moodle-sk-1.8.4-1.fc7.noarch.rpm
691c76001370ea255822ada30fff86afccf20fa9 moodle-si-1.8.4-1.fc7.noarch.rpm
ce1e252fc5354ebadab42cf085c9f0fd2135488b moodle-ru-1.8.4-1.fc7.noarch.rpm
c14142e083db72309ed147050aef4eeacc83ce9d moodle-ro-1.8.4-1.fc7.noarch.rpm
deeb267605fbf31e4fffdd8ae570aad49292d52c moodle-pt_br-1.8.4-1.fc7.noarch.rpm
4a4a5d8f28e001064ea776bde605e354e85c4db2 moodle-pt-1.8.4-1.fc7.noarch.rpm
a937c05e1ebc9504b1e8df24c2720d1630829e7f moodle-pl-1.8.4-1.fc7.noarch.rpm
9203e5419d15d04f1f52fd740e439f5cc11b0b58 moodle-no_gr-1.8.4-1.fc7.noarch.rpm
444ecafa89ae6af24cd5156edc30de43139d3ad4 moodle-no-1.8.4-1.fc7.noarch.rpm
6c4e4715d68a534ce73cf42b6b9c25973956cdd9 moodle-nn-1.8.4-1.fc7.noarch.rpm
788206ab8c6e141a1d727dac1089de1f0096ca41 moodle-nl-1.8.4-1.fc7.noarch.rpm
1dc3962024a00f5309df1367855f0236fb394523 moodle-ms-1.8.4-1.fc7.noarch.rpm
2b535b78566c093997899aeb23088b3d925af5e8 moodle-mn-1.8.4-1.fc7.noarch.rpm
5453be7db2a6d834ea3d79750791675cb0e6ea6d moodle-ml-1.8.4-1.fc7.noarch.rpm
df303faa75e9de44a7e54bc3a701f362070029f5 moodle-mk-1.8.4-1.fc7.noarch.rpm
d66d53dd8c8e12a4541607bc6a65d0e676fcdba3 moodle-mi_wwow-1.8.4-1.fc7.noarch.rpm
3265230022f8196cb4210cbaff95be273f68881a moodle-mi_tn-1.8.4-1.fc7.noarch.rpm
751f2fffa1f9a5d69decb4a96d45437285993102 moodle-lv-1.8.4-1.fc7.noarch.rpm
d5e443e0e8253f2b096a628dfe11dc17eebdad98 moodle-lt-1.8.4-1.fc7.noarch.rpm
bc300b73aceddc55bfe2ea855815b7253c722c82 moodle-lo-1.8.4-1.fc7.noarch.rpm
e86547178df50ea32750760075e5e405c051579c moodle-ko-1.8.4-1.fc7.noarch.rpm
d98ba46bf3902dc44751b351619eb75e70db9405 moodle-kn-1.8.4-1.fc7.noarch.rpm
554e6dcee679ea84601d689a28cd4333c19d207a moodle-km-1.8.4-1.fc7.noarch.rpm
4c6bfc68a9a629a68cd477899f08f1cea3f465ad moodle-ka-1.8.4-1.fc7.noarch.rpm
0f8602576c4f51f3c6b63e179caae1f9cdd75105 moodle-ja-1.8.4-1.fc7.noarch.rpm
bb06b445a15480ac8010e277ff25b752ac665ad4 moodle-it-1.8.4-1.fc7.noarch.rpm
f8c7e13a0e8efefa028d415c6d36806e3a5a619d moodle-is-1.8.4-1.fc7.noarch.rpm
11d36faaf72b14c0724dd8b4e048db0a8b4da9f9 moodle-id-1.8.4-1.fc7.noarch.rpm
173120ba17650ae5da8dc913020d5cf2f8ff5c67 moodle-hy-1.8.4-1.fc7.noarch.rpm
3f5e57bdf8b0856fc7452922f48fe1bd9ca5647d moodle-hu-1.8.4-1.fc7.noarch.rpm
586e7f986ba49c31334471744c016bc460239d8b moodle-hr-1.8.4-1.fc7.noarch.rpm
64926fc6ae15d6281a00f19ac52efbe8b16a49f8 moodle-hi-1.8.4-1.fc7.noarch.rpm
0f53b8c2d9ace24339256c067fe136dfc4e95799 moodle-he-1.8.4-1.fc7.noarch.rpm
3d50ac97501564dca4401151015df507c5a5f339 moodle-gu-1.8.4-1.fc7.noarch.rpm
09c023e06c383cd230feb0deb435dd5814d22be6 moodle-gl-1.8.4-1.fc7.noarch.rpm
3632b77ddd0392bfe658d890e532306b3301daf7 moodle-ga-1.8.4-1.fc7.noarch.rpm
5a1d7d8975710976776913fc4c398fd4436b6d33 moodle-fr_ca-1.8.4-1.fc7.noarch.rpm
514b63f1786d440c73ab1a92051bad4a9efe5ffc moodle-fr-1.8.4-1.fc7.noarch.rpm
4f0fa606b25a40387229787c833e1e6391589452 moodle-fil-1.8.4-1.fc7.noarch.rpm
efe9eda6e97c4f41379f29ad38111abb65ef9e1c moodle-fi-1.8.4-1.fc7.noarch.rpm
2054ca5eddd95daf9e295a4574f52a61cae4b681 moodle-fa-1.8.4-1.fc7.noarch.rpm
6fff49d47e8ff39ac12859f364fa5e2092639349 moodle-eu-1.8.4-1.fc7.noarch.rpm
2b0f29ff03e3e7a9981219aa828aa8d745493af6 moodle-et-1.8.4-1.fc7.noarch.rpm
55a513095b62337e23bc2913acd5fc1d5215458e moodle-es-1.8.4-1.fc7.noarch.rpm
8adf14722a3436a4c4bf8a6c627440b811467212 moodle-el-1.8.4-1.fc7.noarch.rpm
af8ff5f25ef9d154dad4daf3b674b8f8f5db847a moodle-de_du-1.8.4-1.fc7.noarch.rpm
156b31836c71a9a4f58667af908daa8db20516af moodle-de-1.8.4-1.fc7.noarch.rpm
f0adfc9bd31cf22b80e4f8c5ed02e464c249520e moodle-da-1.8.4-1.fc7.noarch.rpm
0f0e4dc9f9e52f7fcd5352f5febf10453735c865 moodle-cs-1.8.4-1.fc7.noarch.rpm
55eac7cbf2593119a2b71fcbeb753fcf89aad0dd moodle-ca-1.8.4-1.fc7.noarch.rpm
f0166fef5af5d91e302afb93d656cff2e02514d9 moodle-bs-1.8.4-1.fc7.noarch.rpm
7c63874c8eef5ead16a3ac42e46eeee97676427b moodle-bg-1.8.4-1.fc7.noarch.rpm
a0b0f21cc56fd60cae4024b484ef38cda6de8e27 moodle-be-1.8.4-1.fc7.noarch.rpm
325e0a1947d4b080c316aed4c9493f0f64920533 moodle-ar-1.8.4-1.fc7.noarch.rpm
e9b67e3efcaa45f27248c38d471cfda3679c285f moodle-af-1.8.4-1.fc7.noarch.rpm
6e82f31eef9e6bce636b3bb0718de295dcc40016 moodle-1.8.4-1.fc7.noarch.rpm
fc5fbaef3ceca6e0d7edf1157663e5437a93011e moodle-1.8.4-1.fc7.src.rpm

ChangeLog

2008-01-16 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.
 
 

Search
      

Mailinglist
    
 

Oracle Products Multiple Code Execution and Security Bypass Issues

Oracle Products Command Execution and SQL Injection Vulnerabilities

Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities

Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability

Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities

Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities

Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

Apple Mac OS X Code Execution and Security Bypass Vulnerabilities

Apple iPhone and iPod touch Multiple Code Execution Vulnerabilities

Apple Xcode Code Execution and Information Disclosure Vulnerabilities

Apple TV Data Processing Remote Code Execution Vulnerabilities

Apple Mac OS X Command Execution and Security Bypass Issues

Apple Safari for Mac OS X Remote Code Execution Vulnerability

Apple Mac OS X ARDAgent Local Privilege Escalation Vulnerability

Sun Solaris Covert Channel Local Security Bypass Vulnerability

Sun Solaris NFS RPC Zone Denial of Service Vulnerability

Sun Solaris NFS Kernel Module Local Denial of Service Vulnerability

Sun Solaris NFSv4 Client Kernel Module Denial of Service Vulnerability

Sun Java System Portal Server Cross Site Scripting Vulnerability

Sun rdesktop Code Execution and Denial of Service

Sun Java System Web Proxy Server Denial of Service Vulnerability

Copyright 2003-2008 © FrSIRT.COM - Privacy Policy