MoinMoin Virtual Group ACL Evaluation Security Bypass Vulnerability

MoinMoin is prone to a security-bypass vulnerability because a group containing a virtual group fails to evaluate the ACL rules correctly.

Successful exploits will allow attackers to bypass certain security restrictions and gain unauthorized access to restricted content. This may aid in further attacks.

MoinMoin 1.9.4 and prior versions are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus