The Drupal Security Team has found that the privilege system of Drupal can
be circumvented in a very special case because an input check is not
implemented properly.
Drupal 4.4.0, 4.4.1, 4.4.2
Drupal 4.5.0, 4.5.1, 4.5.2
Drupal 4.6.0
If public registration is allowed then it is possible for an attacker
to obtain additional user roles. As a result, an attacker could grant
himself administration privileges.
Either upgrade or disable public registration:
The security contact for Drupal can be reached at [email protected]
or using the form at http://drupal.org/contact.
Uwe Hermann <[email protected]>
http://www.hermann-uwe.de | http://www.crazy-hacks.org
http://www.it-services-uh.de | http://www.phpmeat.org
http://www.unmaintained-free-software.org | http://www.holsham-traders.de