CVE-2009-0255 : The System extension Install tool in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 creates the

The System extension Install tool in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 creates the encryption key with an insufficiently random seed, which makes it easier for attackers to crack the key.

Published 2009-01-22 23:30:00

Updated 2024-02-14 16:10:04

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2009-0255

Probability of exploitation activity in the next 30 days: 2.24%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 89 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2009-0255

TYPO3 sa-2009-001 Weak Encryption Key File Disclosure

Disclosure Date: 2009-01-20

First seen: 2020-04-26

auxiliary/admin/http/typo3_sa_2009_001

This module exploits a flaw in TYPO3 encryption ey creation process to allow for file disclosure in the jumpUrl mechanism. This flaw can be used to read any file that the web server user account has access to view. Authors: - Chris John Riley

More information

CVSS scores for CVE-2009-0255

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2009-0255

CWE-310

Assigned by: nvd@nist.gov (Primary)
CWE-330 Use of Insufficiently Random Values

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2009-0255

http://secunia.com/advisories/33679

About Secunia Research | Flexera
Broken Link;Vendor Advisory
http://secunia.com/advisories/33617

About Secunia Research | Flexera
Broken Link;Vendor Advisory
http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-001/

Page Not Found
Vendor Advisory

CVEs referencing this url
http://www.debian.org/security/2009/dsa-1711

[SECURITY] [DSA 1711-1] New TYPO3 packages fix remote code execution
Mailing List

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/48132

TYPO3 Install tool weak security CVE-2009-0255 Vulnerability Report
Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/33376

Broken Link;Third Party Advisory;VDB Entry

CVEs referencing this url

Products affected by CVE-2009-0255

Debian » Debian Linux » Version: 4.0
cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
Matching versions
Typo3 » Typo3
Versions from including (>=) 4.2.0 and before (<) 4.2.4
cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*
Matching versions
Typo3 » Typo3
Versions from including (>=) 4.1.0 and before (<) 4.1.8
cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*
Matching versions
Typo3 » Typo3
Versions from including (>=) 4.0 and before (<) 4.0.10
cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*
Matching versions