Allele Security Alert
ASA-2018-00085
Identifier(s)
ASA-2018-00085, TYPO3-CORE-SA-2018-012
Title
Denial of Service in Frontend Record Registration
Vendor(s)
TYPO3 Association
Product(s)
TYPO3
Affected version(s)
TYPO3 7.0.0-7.6.31 and 8.0.0-8.7.20
Fixed version(s)
TYPO3 versions 7.6.32 or 8.7.21
Proof of concept
Unknown
Description
TYPO3’s built-in record registration functionality (aka “basic shopping cart”) using recs URL parameters is vulnerable to denial of service. Failing to properly ensure that anonymous user sessions are valid, attackers can use this vulnerability in order to create an arbitrary amount of individual session-data records in the database.
Technical details
Unknown
Credits
Mads Lønne Jensen and Benni Mack (TYPO3 core team)
Reference(s)
TYPO3 9.5.2, 8.7.21 and 7.6.32 security releases published
https://typo3.org/article/typo3-952-8721-and-7632-security-releases-published/
TYPO3-CORE-SA-2018-012: Denial of Service in Frontend Record Registration
https://typo3.org/security/advisory/typo3-core-sa-2018-012/
Deprecation: #70316 – Frontend basket with recs
https://docs.typo3.org/typo3cms/extensions/core/Changelog/8.6/Deprecation-70316-FrontendBasketWithRecs.html
[TYPO3-announce] Announcing TYPO3 v9.5.2, v8.7.21 and v7.6.32 security releases
http://lists.typo3.org/pipermail/typo3-announce/2018/000435.html
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 1, 2019