On CBS.com: Sat Night Fights Returns to CBS 11/7 9pm
BNET Business Network:
BNET
TechRepublic
ZDNet

August 11th, 2009

Password-reset flaw haunts WordPress admins

Posted by Ryan Naraine @ 8:17 am

Categories: Browsers, Complex Attacks, Data theft, Exploit code, Locally Running Web Servers, Open source, Passwords, Patch Watch, Privacy, Responsible disclosure, Vulnerability research, Web Applications

Tags: Administrator, Flaw, Wordpress, Security, Ryan Naraine

Researchers are sounding the alarm for a serious administrator password-reset vulnerability affecting the latest version of WordPress, the popular open-source blog publishing platform.

The flaw, which can be exploited via the browser, gives an attacker a trivial way to compromise the admin account of any WordPress of WordPress MU (multiple user) installation.

Proof-of-concept code demonstrating the problem is publicly available. A patch is currently being prepared for release soon.

Swa Frantzen, an incident handler at the SANS Internet Storm Center has a detailed explanation of the problem.

UPDATE (August 12, 2009): WordPress has shipped a fix for this “very annoying” problem.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 16 Talkback(s)
Not really compromising the admin account
I'm not sure what you mean by "compromise" but it does not look to me like this flaw will allow an attacker access to an admin account. It will only allow the admin password to be reset, which is don... (Read the rest)
Posted by: twc_brian Posted on: 08/12/09  (Edited: 08/12/09 @ 02:42) You are currently: a Guest | | Terms of Use
Open source and PHP at its worst  honeymonster | 08/11/09
So I see you haven't written a line of PHP yourself...  storm14k | 08/11/09
What about making it harder to learn?  eqpc | 08/11/09
It doesn't need to be harder to learn.  storm14k | 08/11/09
I understand..  eqpc | 08/11/09
The problem is more about accesibility than anything.  storm14k | 08/11/09
The problem is definitely with the language, PHP  honeymonster | 08/11/09
And pray tell which language....  storm14k | 08/12/09
Oh my, I've written more PHP than you've eaten peas  honeymonster | 08/11/09
What!!!  eqpc | 08/11/09
Explanation  honeymonster | 08/11/09
Thanks  eqpc | 08/11/09
Too much power for some people....  storm14k | 08/12/09
You probably have...  storm14k | 08/11/09
Here is how you can patch this manually  georgeou | 08/12/09
Not really compromising the admin account  twc_brian | 08/12/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Essential Topics Click Here

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here