Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2014-5241

The JSONP endpoint in includes/api/ApiFormatJson.php in MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 accepts certain long callback values and does not restrict the initial bytes of a JSONP response, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks, and obtain sensitive information, via a crafted OBJECT element with SWF content consistent with a restricted character set.

Related bugs and status

CVE-2014-5241 (Candidate) is related to these bugs:

Bug #1370227: Mediawiki package vulnerable to CVE-2014-2665

Summary				In	Importance	Status
	1370227	Mediawiki package vulnerable to CVE-2014-2665		mediawiki (Ubuntu)	Undecided	Expired

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2014081...
CONFIRM: https://bugzilla.wikim...
DEBIAN: DSA-3011
MLIST: [MediaWiki-announce] 2...
CONFIRM: http://advisories.mage...
MANDRIVA: MDVSA-2014:153
SECUNIA: 59738