Test Kennung:	1.3.6.1.4.1.25623.1.0.900422
Kategorie:	Web application abuses
Titel:	MediaWiki Information Disclosure Vulnerabilities
Zusammenfassung:	This host is running MediaWiki and is prone to Information; Disclosure Vulnerabilities.
Beschreibung:	Summary: This host is running MediaWiki and is prone to Information Disclosure Vulnerabilities. Vulnerability Insight: The flaws are due to: - wgShowExceptionDetails variable sometimes shows the installation path of MediaWiki which can lead to expose sensitive information about the remote system. - fails to protect against the download of backups of deleted images in images/deleted/. Vulnerability Impact: Successful exploitation will lead to gain knowledge on sensitive directories on the remote web server via requests. Affected Software/OS: MediaWiki version 1.8.1 to 1.13.3 MediaWiki version 1.11 to 1.13.3 Solution: Upgrade to MediaWiki Version 1.15.4 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5687 https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01256.html https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01309.html http://lists.wikimedia.org/pipermail/mediawiki-announce/2008-December/000080.html http://secunia.com/advisories/33349 XForce ISS Database: mediawiki-images-info-disclosure(47678) https://exchange.xforce.ibmcloud.com/vulnerabilities/47678 Common Vulnerability Exposure (CVE) ID: CVE-2008-5688 http://www.mediawiki.org/wiki/Manual:$wgShowExceptionDetails
Copyright	Copyright (C) 2008 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.