Vigil@nce - Joomla: information disclosure
February 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use three Joomla vulnerabilities, in order to
obtain information.
Severity: 2/4
Creation date: 03/02/2012
IMPACTED PRODUCTS
– Joomla!
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Joomla.
An attacker can obtain information. [severity:2/4; CVE-2012-0835]
A local attacker can read error logs. [severity:1/4; CVE-2012-0836]
An attacker can obtain the name of a path. [severity:1/4;
CVE-2012-0837]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Joomla-information-disclosure-11342