Redmine "back_url" Open Redirect Vulnerability


Description   (:A vulnerability has been identifed in Redmine.:A remote attacker could exploit it by inciting his victim to follow a specially crafted link in order to redirect to a arbitrary malicious website.::This vulnerability stems from the "app/controllers/application_controller.rb" page.::The redmine packages provided by Debian Squeeze 6 and Wheezy 7 are vulnerable.)
     
Vulnerable Products   Vulnerable OS:
FreeBSD (FreeBSD) - AllGNU/Linux (Debian) - 6, 7Vulnerable Software:
Redmine (Redmine) - 2.4.0, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.5.0
     
Solution   Fixed redmine packages for FreeBSD are available.
     
CVE   CVE-2014-1985
     
References   - Redmine : Open Redirect vulnerability (referenced as JVN#93004610)
http://www.redmine.org/projects/redmine/wiki/Security_Advisories
- DST : redmine
https://security-tracker.debian.org/tracker/TEMP-0743828-97B803
- FreeBSD ports status : redmine
http://portsmon.freebsd.org/portoverview.py?category=&portname=redmine&wildcard=
- VuXML : redmine -- open redirect vulnerability
http://www.vuxml.org/freebsd/c2efcd46-9ed5-11e5-8f5c-002590263bf5.html
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
Site with open redirect
4.0.0
     


 
 
 
 
 Risk level 
Moderate 

 Vulnerability First Public Report Date 
2014-04-06 

 Target Type 
Server 

 Possible exploit 
Remote