CVE-2009-4527 - OpenCVE

The Shibboleth authentication module 5.x before 5.x-3.4 and 6.x before 6.x-3.2, a module for Drupal, does not properly remove statically granted privileges after a logout or other session change, which allows physically proximate attackers to gain privileges by using an unattended web browser.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Drupal	Drupal
Niif	Shib Auth

Configuration 1 [-]

AND

OR	cpe:2.3:a:niif:shib_auth:5.x-1.x:dev::::::
	cpe:2.3:a:niif:shib_auth:5.x-2.1:::::::*
	cpe:2.3:a:niif:shib_auth:5.x-2.2:::::::*
	cpe:2.3:a:niif:shib_auth:5.x-2.4:::::::*
	cpe:2.3:a:niif:shib_auth:5.x-2.5:::::::*
	cpe:2.3:a:niif:shib_auth:5.x-2.x:dev::::::
	cpe:2.3:a:niif:shib_auth:5.x-3.3:::::::*
	cpe:2.3:a:niif:shib_auth:5.x-3.x:dev::::::
	cpe:2.3:a:niif:shib_auth:6.x-1.x:dev::::::
	cpe:2.3:a:niif:shib_auth:6.x-2.0:::::::*
	cpe:2.3:a:niif:shib_auth:6.x-2.1:::::::*
	cpe:2.3:a:niif:shib_auth:6.x-2.2:::::::*
	cpe:2.3:a:niif:shib_auth:6.x-2.x:dev::::::
	cpe:2.3:a:niif:shib_auth:6.x-3.0:::::::*
	cpe:2.3:a:niif:shib_auth:6.x-3.0:1::::::
	cpe:2.3:a:niif:shib_auth:6.x-3.1:::::::*
	cpe:2.3:a:niif:shib_auth:6.x-3.x:dev::::::

cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://drupal.org/node/604488
http://secunia.com/advisories/37057
http://www.securityfocus.com/bid/36684
http://www.vupen.com/english/advisories/2009/2919
https://exchange.xforce.ibmcloud.com/vulnerabilities/53779

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-12-31T19:00:00

Updated: 2024-08-07T07:08:38.075Z

Reserved: 2009-12-31T00:00:00

Link: CVE-2009-4527

Vulnrichment

No data.

NVD

Status : Modified

Published: 2009-12-31T19:30:00.577

Modified: 2017-08-17T01:31:37.007

Link: CVE-2009-4527

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-10-14T00:00:00", "descriptions": [{"lang": "en", "value": "The Shibboleth authentication module 5.x before 5.x-3.4 and 6.x before 6.x-3.2, a module for Drupal, does not properly remove statically granted privileges after a logout or other session change, which allows physically proximate attackers to gain privileges by using an unattended web browser."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "36684", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/36684"}, {"name": "37057", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/37057"}, {"name": "shibboleth-saml2-priv-escalation(53779)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53779"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://drupal.org/node/604488"}, {"name": "ADV-2009-2919", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/2919"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-4527", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Shibboleth authentication module 5.x before 5.x-3.4 and 6.x before 6.x-3.2, a module for Drupal, does not properly remove statically granted privileges after a logout or other session change, which allows physically proximate attackers to gain privileges by using an unattended web browser."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "36684", "refsource": "BID", "url": "http://www.securityfocus.com/bid/36684"}, {"name": "37057", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/37057"}, {"name": "shibboleth-saml2-priv-escalation(53779)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53779"}, {"name": "http://drupal.org/node/604488", "refsource": "CONFIRM", "url": "http://drupal.org/node/604488"}, {"name": "ADV-2009-2919", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/2919"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T07:08:38.075Z"}, "title": "CVE Program Container", "references": [{"name": "36684", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/36684"}, {"name": "37057", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/37057"}, {"name": "shibboleth-saml2-priv-escalation(53779)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53779"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://drupal.org/node/604488"}, {"name": "ADV-2009-2919", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2009/2919"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-4527", "datePublished": "2009-12-31T19:00:00", "dateReserved": "2009-12-31T00:00:00", "dateUpdated": "2024-08-07T07:08:38.075Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:niif:shib_auth:5.x-1.x:dev:*:*:*:*:*:*", "matchCriteriaId": "15E77DE1-B275-47F1-95FB-C7585471BBB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-2.1:*:*:*:*:*:*:*", "matchCriteriaId": "88ADE30B-7B9D-4141-A5AA-2A0E3331B3AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-2.2:*:*:*:*:*:*:*", "matchCriteriaId": "FFC7441B-D570-458B-BB6E-82358F333E5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-2.4:*:*:*:*:*:*:*", "matchCriteriaId": "1795BC5F-A8F9-4546-B319-5352753198CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-2.5:*:*:*:*:*:*:*", "matchCriteriaId": "5D8815F9-BC9E-445E-80FF-5B4C3B62224F", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-2.x:dev:*:*:*:*:*:*", "matchCriteriaId": "D936BB56-06D1-4730-916B-81B791B489C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-3.3:*:*:*:*:*:*:*", "matchCriteriaId": "B197C383-71B5-4891-A67C-A1D357007304", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:5.x-3.x:dev:*:*:*:*:*:*", "matchCriteriaId": "256F4AC0-C2A5-43FD-B164-2174EC92EDA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-1.x:dev:*:*:*:*:*:*", "matchCriteriaId": "7155A403-16B9-4A2C-B035-059E42F3A3D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-2.0:*:*:*:*:*:*:*", "matchCriteriaId": "A364AA96-0ACC-488A-8DF4-814807F5FCFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-2.1:*:*:*:*:*:*:*", "matchCriteriaId": "71CCBBD7-04BC-4B2B-BE53-F9AAAB9A8F4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-2.2:*:*:*:*:*:*:*", "matchCriteriaId": "083B1A21-9FC9-4593-82AC-59FA9BFE7743", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-2.x:dev:*:*:*:*:*:*", "matchCriteriaId": "E4A2F6C6-7323-4F7E-B599-03D78158A9CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-3.0:*:*:*:*:*:*:*", "matchCriteriaId": "EC185FC1-4AC8-47A4-BEFD-97092FAA93EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-3.0:1:*:*:*:*:*:*", "matchCriteriaId": "A410B66E-99B3-472D-B5D1-CA0506D7A060", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-3.1:*:*:*:*:*:*:*", "matchCriteriaId": "925B50D8-D35C-415A-B66E-23CD80891650", "vulnerable": true}, {"criteria": "cpe:2.3:a:niif:shib_auth:6.x-3.x:dev:*:*:*:*:*:*", "matchCriteriaId": "5ADBB3C3-FEA1-43D2-9F4E-DB663A2EEEDC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*", "matchCriteriaId": "799CA80B-F3FA-4183-A791-2071A7DA1E54", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Shibboleth authentication module 5.x before 5.x-3.4 and 6.x before 6.x-3.2, a module for Drupal, does not properly remove statically granted privileges after a logout or other session change, which allows physically proximate attackers to gain privileges by using an unattended web browser."}, {"lang": "es", "value": "El m\u00f3dulo de autenticaci\u00f3n Shibboleth v5.x anterior a v5.x-3.4 y v6.x anterior a v6.x-3.2, un m\u00f3dulo para Drupal, no elimina adecuadamente los privilegios otorgados est\u00e1ticamente despu\u00e9s un cierre de sesi\u00f3n u otro cambio de sesi\u00f3n, lo que permite a atacantes pr\u00f3ximos f\u00edsicamente obtener privilegios utilizando un navegador web desatendido.\r\n"}], "id": "CVE-2009-4527", "lastModified": "2017-08-17T01:31:37.007", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-12-31T19:30:00.577", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://drupal.org/node/604488"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/37057"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/36684"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/2919"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53779"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}