SNS Vulnerability

Fedora Security Update Fixes Doctrine Remote SQL Injection Vulnerability

Description

A vulnerability has been identified in Fedora, which could be exploited by attackers to manipulate and inject SQL queries. This issue is caused by an input validation error in the "Doctrine/DBAL/Platforms/AbstractPlatform::modifyLimitQuery()" function within Doctrine when processing user-supplied data, which could be exploited by malicious people to conduct SQL injection attacks.

Vulnerable Products

Vulnerable Software:
Fedora 15

Solution

Upgrade the affected package (php-doctrine-Doctrine) : http://docs.fedoraproject.org/yum/

CVE

CVE-2011-1522

References

http://www.doctrine-project.org/blog/doctrine-security-fix
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056936.html

Vulnerability Manager Detection

IPS Protection

ASQ Engine alarm	Available Since
SQL injection Prevention - POST : suspicious SELECT statement in data	3.2.0
SQL injection Prevention - POST : possible version probing in data	3.2.0
SQL injection Prevention - GET : suspicious CAST statement in URL	3.2.0
SQL injection Prevention - GET : suspicious DECLARE statement in URL	3.2.0
SQL injection Prevention - POST : suspicious OPENQUERY statement in data	3.2.0
SQL injection Prevention - POST : suspicious CREATE statement in data	3.2.0
SQL injection Prevention - POST : suspicious UPDATE statement in data	3.2.0
SQL injection Prevention - POST : suspicious UNION statement in data	3.2.0
SQL injection Prevention - POST : suspicious DROP statement in data	3.2.0
SQL injection Prevention - POST : suspicious INSERT statement in data	3.2.0
SQL injection Prevention - POST : suspicious OR statement in data	3.2.0
SQL injection Prevention - POST : suspicious EXEC statement in data	3.2.0
SQL injection Prevention - POST : suspicious OPENROWSET statement in data	3.2.0
SQL injection Prevention - POST : suspicious DECLARE statement in data	3.2.0
SQL injection Prevention - POST : suspicious HAVING statement in data	3.2.0
SQL injection Prevention - POST : suspicious CAST statement in data	3.2.0

Risk level

Moderate

Vulnerability First Public Report Date

2011-03-29

Target Type

Server

Possible exploit

Local & Remote