Allele Security Alert
Security Misconfiguration in Install Tool Cookie
TYPO3 7.0.0-7.6.31, 8.0.0-8.7.20 and 9.0.0-9.5.1
TYPO3 versions 7.6.32, 8.7.21 or 9.5.2
Proof of concept
It has been discovered that cookies created in the Install Tool are not hardened to be submitted only via HTTP. In combination with other vulnerabilities such as cross-site scripting it can lead to hijacking an active and valid session in the Install Tool.
Oliver Hader (TYPO3 core team) and Andreas Wolf (TYPO3 core team)
TYPO3 9.5.2, 8.7.21 and 7.6.32 security releases published
TYPO3-CORE-SA-2018-009: Security Misconfiguration in Install Tool Cookie
[SECURITY] Make InstallTool session cookie HTTP-only
[TYPO3-announce] Announcing TYPO3 v9.5.2, v8.7.21 and v7.6.32 security releases
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 1, 2019