p5-RT-Authen-ExternalAuth -- privilege escalation

ID CDC4FF0E-D736-11E1-8221-E0CB4E266481
Type freebsd
Reporter FreeBSD
Modified 2012-07-25T00:00:00


The RT development team reports:

RT::Authen::ExternalAuth 0.10 and below (for all versions of RT) are vulnerable to an escalation of privilege attack where the URL of a RSS feed of the user can be used to acquire a fully logged-in session as that user. CVE-2012-2770 has been assigned to this vulnerability. Users of RT 3.8.2 and above should upgrade to RT::Authen::ExternalAuth 0.11, which resolves this vulnerability.