Vulnerability in sh404SEF versions t, u and w

For all Non-Joomla! security issues. ie 3pd Components etc.

Moderator: General Support Moderators

Forum rules
Locked
shumisha
Joomla! Guru
Joomla! Guru
Posts: 520
Joined: Sat Aug 20, 2005 3:15 pm
Contact:

Vulnerability in sh404SEF versions t, u and w

Post by shumisha » Tue Oct 23, 2007 8:50 pm

Hello,

This morning, after some users reported hacking of their site, the log files they supplied led me to the discovery of a vulnerability in version 1.2.4. t, u and w of my URL rewriting component, sh404SEF. Under a particular set of circumstances, remote code execution was possible. I apologize for the initial error in code which allowed this, and to the webmasters that suffered hacking due to this vulnerability.

I have uploaded some fixed files on Joomlacode at http://joomlacode.org/gf/project/sh404s ... age_id=313. Here are the details :

A - If you are using version up to and including 1.2.4s, there is no vulnerability, and you don't need to take any action

B - If you are using version 1.2.4.t or version 1.2.4.u, you need to patch your site :
  1 - download the appropriate patch file from Joomlacode (sef404_t2.zip for version 1.2.4.t, or sef404_u2.zip for version 1.2.4.u)
  2 - unzip this file on your local computer. This will give you a sef404.php file
  3 - upload using ftp this new file into the /components/com_sef directory, replacing the existing one
 
C - if you are using version 1.2.4.w, you can either patch your site, or uninstall/re-install new version w2

Patching your site :
  1 - download the appropriate patch file from Joomlacode (sef404_w2.zip)
  2 - unzip this file on your local computer. This will give you a sef404.php file
  3 - upload using ftp this new file into the /components/com_sef directory, replacing the existing one
 
Installing new version :
  1 - Download the new version 1.2.4.w2, availaible now from Joomlacode
  2 - using joomla installer, UN-install the current w version from your site
  3 - using Joomla installer, install the new version w2
  All settings and data will be preserved in this process
 
Very soon I'll be releasing next version of sh404SEF, which has a set of security features to avoid this kind of issues as much as possible, not only in sh404SEF, but in other Joomla extensions.
In the mean time, I hope damages will be limited. I'll be available as much as can be at http://extensions.siliana.net/en/ to assist you in the upgrade process if needed.

Your sincerely 
shumisha
Last edited by shumisha on Tue Oct 23, 2007 8:53 pm, edited 1 time in total.
4SEO, all-in-one SEO extension for Joomla 3 & 4 - https://weeblr.com
I don't reply to PM anymore. Thanks for using 4SEO and wbAMP

jefius
Joomla! Apprentice
Joomla! Apprentice
Posts: 8
Joined: Mon Jun 12, 2006 7:38 pm

Re: Vulnerability in sh404SEF versions t, u and w

Post by jefius » Mon Nov 05, 2007 3:37 pm

Is the Vulnerablilty also in the Artio SEF component?

Thanks,
Jef

shumisha
Joomla! Guru
Joomla! Guru
Posts: 520
Joined: Sat Aug 20, 2005 3:15 pm
Contact:

Re: Vulnerability in sh404SEF versions t, u and w

Post by shumisha » Mon Nov 05, 2007 6:23 pm

Hi,

Yes. Artio has released a new version, a few days after I informed them Joomsef was vulnerable. However, last time I checked they did not listed it as a security release.

Regards
4SEO, all-in-one SEO extension for Joomla 3 & 4 - https://weeblr.com
I don't reply to PM anymore. Thanks for using 4SEO and wbAMP

petelinux
Joomla! Intern
Joomla! Intern
Posts: 71
Joined: Fri Aug 04, 2006 5:45 am
Location: indonesia
Contact:

Re: Vulnerability in sh404SEF versions t, u and w

Post by petelinux » Thu Dec 27, 2007 2:09 pm

how about ARTIO JoomSEF v1.3.1 version...?
have to upgrade it..?

shumisha
Joomla! Guru
Joomla! Guru
Posts: 520
Joined: Sat Aug 20, 2005 3:15 pm
Contact:

Re: Vulnerability in sh404SEF versions t, u and w

Post by shumisha » Thu Dec 27, 2007 2:19 pm

Hi

Artio Joomsef is currently at version 2.2.4. If you have a version 1.3.1, it must be very old ! and yes, anything below Joomsef version 2.2.2 must be upgraded. Please refer to official Joomla extensions security list available from Joomla FAQ

Regards
4SEO, all-in-one SEO extension for Joomla 3 & 4 - https://weeblr.com
I don't reply to PM anymore. Thanks for using 4SEO and wbAMP


Locked

Return to “3rd Party/Non Joomla! Security Issues”