CVE-2008-3747

Description

The (1) get_edit_post_link and (2) get_edit_comment_link functions in wp-includes/link-template.php in WordPress before 2.6.1 do not force SSL communication in the intended situations, which might allow remote attackers to gain administrative access by sniffing the network for a cookie.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
wordpress	13.04 raring	Not affected
	12.10 quantal	Not affected
	12.04 LTS precise	Not affected
	11.10 oneiric	Not affected
	11.04 natty	Not affected
	10.10 maverick	Not affected
	10.04 LTS lucid	Not affected
	9.10 karmic	Not affected
	9.04 jaunty	Not affected
	8.10 intrepid	Ignored end of life, was deferred
	8.04 LTS hardy	Ignored end of life, was deferred
	7.10 gutsy	Ignored end of life, was deferred
	7.04 feisty	Ignored end of life, was deferred
	6.06 LTS dapper	Ignored end of life, was deferred

Notes

jdstrand

per upstream via stefanlsd, SSL functionality doesn't exist before 2.6.0. However, Debian is trying to backport the SSL functionality, believing that lack of SSL is an extension of this CVE. stefanlsd and upstream feel that this approach is dangerous and messy. It has been marked as Won't Fix in LP, but can be reopened if the Debian patch is viable. Debian patch is included in 2.5.1-6 (broken) and 2.5.1-7

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
wordpress	Other: http://trac.wordpress.org/ticket/7359

References

Other references

https://www.cve.org/CVERecord?id=CVE-2008-3747