FreePBX
  1. FreePBX
  2. FREEPBX-3658

CSS and CSRF Security Vulnerabilities and User Account Enumeration

    Details

    • Backend Engine:
      All
    • Confirmation:
      Confirmed

      Description

      Various CSS and CSRF vulnerabilities are present within FreePBX including the User Portal (ARI) and the Reports application within FreePBX. These vulnerabilities would only effect an already authenticated login to FreePBX and given the nature of the vulnerabilities, they are very low risk although they are real and will be addressed immediately.

      There is also a User Account Enumeration issue in the ARI.

      These issues exist in most releases of FreePBX, fixes will be provided for 2.4, 2.5 and trunk (soon to be 2.6).

      The vulnerabilities were reported with discretion by Secunia Research and will be published shortly on their site as Secunia Advisory SA34772:

      http://secunia.com/advisories/34772/

        Activity

        Hide
        Philippe Lindheimer added a comment -

        These have been resolved and published out to the online module repository, the published modules are referenced below:

        2.4: (http://www.freepbx.org/trac/changeset/7659)

        2.5: (http://www.freepbx.org/trac/changeset/7659), (http://www.freepbx.org/trac/changeset/7659)

        2.6/trunk: (http://www.freepbx.org/trac/changeset/7659), (http://www.freepbx.org/trac/changeset/7659)

        Show
        Philippe Lindheimer added a comment - These have been resolved and published out to the online module repository, the published modules are referenced below: 2.4: ( http://www.freepbx.org/trac/changeset/7659 ) 2.5: ( http://www.freepbx.org/trac/changeset/7659 ), ( http://www.freepbx.org/trac/changeset/7659 ) 2.6/trunk: ( http://www.freepbx.org/trac/changeset/7659 ), ( http://www.freepbx.org/trac/changeset/7659 )
        Hide
        Philippe Lindheimer added a comment -

        (In http://www.freepbx.org/trac/changeset/7699) create more friendly error page with option to proceed with suspect link re FREEPBX-3658

        Show
        Philippe Lindheimer added a comment - (In http://www.freepbx.org/trac/changeset/7699 ) create more friendly error page with option to proceed with suspect link re FREEPBX-3658
        Hide
        Philippe Lindheimer added a comment -

        (In http://www.freepbx.org/trac/changeset/7700) Merged revisions 7699 via svnmerge from
        http://svn.freepbx.org/freepbx/trunk

        ........

        (http://www.freepbx.org/trac/changeset/7699) | p_lindheimer | 2009-05-08 08:02:29 -0700 (Fri, 08 May 2009) | 1 line

        create more friendly error page with option to proceed with suspect link re FREEPBX-3658

        ........

        Show
        Philippe Lindheimer added a comment - (In http://www.freepbx.org/trac/changeset/7700 ) Merged revisions 7699 via svnmerge from http://svn.freepbx.org/freepbx/trunk ........ ( http://www.freepbx.org/trac/changeset/7699 ) | p_lindheimer | 2009-05-08 08:02:29 -0700 (Fri, 08 May 2009) | 1 line create more friendly error page with option to proceed with suspect link re FREEPBX-3658 ........
        Hide
        Philippe Lindheimer added a comment -

        (In http://www.freepbx.org/trac/changeset/7701) Merged revisions 7700 via svnmerge from
        http://svn.freepbx.org/freepbx/branches/2.5

        (http://www.freepbx.org/trac/changeset/7699) | p_lindheimer | 2009-05-08 08:02:29 -0700 (Fri, 08 May 2009) | 1 line

        create more friendly error page with option to proceed with suspect link re FREEPBX-3658
        ................

        Show
        Philippe Lindheimer added a comment - (In http://www.freepbx.org/trac/changeset/7701 ) Merged revisions 7700 via svnmerge from http://svn.freepbx.org/freepbx/branches/2.5 ( http://www.freepbx.org/trac/changeset/7699 ) | p_lindheimer | 2009-05-08 08:02:29 -0700 (Fri, 08 May 2009) | 1 line create more friendly error page with option to proceed with suspect link re FREEPBX-3658 ................
        Hide
        Philippe Lindheimer added a comment -

        (In http://www.freepbx.org/trac/changeset/7705) fixes error when using explicit ports other than 80 or using a fqdn to access pbx re FREEPBX-3658

        Show
        Philippe Lindheimer added a comment - (In http://www.freepbx.org/trac/changeset/7705 ) fixes error when using explicit ports other than 80 or using a fqdn to access pbx re FREEPBX-3658
        Hide
        Philippe Lindheimer added a comment -

        (In http://www.freepbx.org/trac/changeset/7706) Merged revisions 7705 via svnmerge from
        http://svn.freepbx.org/freepbx/trunk

        ........

        (http://www.freepbx.org/trac/changeset/7705) | p_lindheimer | 2009-05-08 10:28:15 -0700 (Fri, 08 May 2009) | 1 line

        fixes error when using explicit ports other than 80 or using a fqdn to access pbx re FREEPBX-3658

        ........

        Show
        Philippe Lindheimer added a comment - (In http://www.freepbx.org/trac/changeset/7706 ) Merged revisions 7705 via svnmerge from http://svn.freepbx.org/freepbx/trunk ........ ( http://www.freepbx.org/trac/changeset/7705 ) | p_lindheimer | 2009-05-08 10:28:15 -0700 (Fri, 08 May 2009) | 1 line fixes error when using explicit ports other than 80 or using a fqdn to access pbx re FREEPBX-3658 ........
        Hide
        Philippe Lindheimer added a comment -

        (In http://www.freepbx.org/trac/changeset/7707) Merged revisions 7706 via svnmerge from
        http://svn.freepbx.org/freepbx/branches/2.5
        ................

        (http://www.freepbx.org/trac/changeset/7705) | p_lindheimer | 2009-05-08 10:28:15 -0700 (Fri, 08 May 2009) | 1 line

        fixes error when using explicit ports other than 80 or using a fqdn to access pbx re FREEPBX-3658

        ................

        Show
        Philippe Lindheimer added a comment - (In http://www.freepbx.org/trac/changeset/7707 ) Merged revisions 7706 via svnmerge from http://svn.freepbx.org/freepbx/branches/2.5 ................ ( http://www.freepbx.org/trac/changeset/7705 ) | p_lindheimer | 2009-05-08 10:28:15 -0700 (Fri, 08 May 2009) | 1 line fixes error when using explicit ports other than 80 or using a fqdn to access pbx re FREEPBX-3658 ................

          People

          • Assignee:
            Unassigned
            Reporter:
            Philippe Lindheimer
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development