Info

Disclosure

Mar 01, 2002

Discovery

Mar 01, 2002

Dates

Exploit

Unknown

Solution

Unknown

Description

Zope contains a flaw that may allow a malicious user to gain access to files outside the configured security context. The issue is due to Zope failing to honour the security context of the creator of a proxy role when determining access to an object via that role. This flaw may lead to a loss of confidentiality.

Classification

Location: Remote/Network Access Required
Attack Type: Authentication Management, Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 2.4.4 or 2.5.1 and higher, as these versions have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Zope	Zope	2.2.0
		2.2.1
		2.2.2
		2.2.3
		2.2.4
		2.2.5
		2.3.0
		2.3.1
		2.3.2
		2.3.3
		2.4.0
		2.4.1
		2.4.2
		2.4.3
		2.5.0

References

Security Tracker: 1003740
CVE ID: 2002-0170 (see also: NVD)
Bugtraq ID: 4229
ISS X-Force ID: 8334
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-02/0377.html
Vendor Specific Advisory URL: http://mail.zope.org/pipermail/zope-announce/2002-March/000727.html
http://www.zope.org/Products/Zope/Hotfix_2002-03-01/README.txt
Vendor Specific Solution URL: http://www.zope.org/Products/Zope/hotfixes/
RedHat RHSA: RHSA-2002:060

Credit

Matthew Kromer - mattzope.com - Zope

Direct URL: http://osvdb.org/36218