CVE-2010-3686

critical

Description

The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.0 protocol by not ensuring that fields are signed, which allows remote attackers to bypass authentication by leveraging an assertion from an OpenID provider.

References

http://www.securityfocus.com/bid/42388

http://www.debian.org/security/2010/dsa-2113

http://marc.info/?l=oss-security&m=128440896914512&w=2

http://marc.info/?l=oss-security&m=128418560705305&w=2

http://drupal.org/node/880480

http://drupal.org/node/880476

Details

Source: Mitre, NVD

Published: 2010-09-29

Updated: 2010-09-30

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Severity: Critical