CVE-2008-3227

Unspecified vulnerability in Joomla! before 1.5.4 has unknown impact and attack vectors related to a User Redirect Spam fix, possibly an open redirect vulnerability.

Weakness

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Affected Software

Name	Vendor	Start Version	End Version
Joomla	Joomla	1.0.13	1.0.13
Joomla	Joomla	1.0.9	1.0.9
Joomla	Joomla	1.5	1.5
Joomla	Joomla	1.5.0_rc1	1.5.0_rc1
Joomla	Joomla	1.5.0_beta2	1.5.0_beta2
Joomla	Joomla	1.0	1.0
Joomla	Joomla	1.5.2	1.5.2
Joomla	Joomla	1.0.1	1.0.1
Joomla	Joomla	1.0.3	1.0.3
Joomla	Joomla	1.0.6	1.0.6
Joomla	Joomla	1.0.8	1.0.8
Joomla	Joomla	1.0.4	1.0.4
Joomla	Joomla	1.0.2	1.0.2
Joomla	Joomla	1.5.0_beta	1.5.0_beta
Joomla	Joomla	1.0.10	1.0.10
Joomla	Joomla	1.5.0_beta1	1.5.0_beta1
Joomla	Joomla	1.5.1	1.5.1
Joomla	Joomla	1.0.12	1.0.12
Joomla	Joomla	1.03	1.03
Joomla	Joomla	1.0.5	1.0.5
Joomla	Joomla	1.0.7	1.0.7
Joomla	Joomla	1.0.0	1.0.0
Joomla	Joomla	*	1.5.3
Joomla	Joomla	1.0.11	1.0.11

Potential Mitigations

Follow the principle of least privilege when assigning access rights to entities in a software system.
Denying access to a file can prevent an attacker from replacing that file with a link to a sensitive file. Ensure good compartmentalization in the system to provide protected areas that can be trusted.

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-3227
CWE	https://cwe.mitre.org/data/definitions/59.html

Improper Link Resolution Before File Access ('Link Following')

Weakness

Affected Software

Potential Mitigations

References

CVE-2008-3227

Improper Link Resolution Before File Access ('Link Following')

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References