CVE-2011-4140

Published: Oct 19, 2011Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

The CSRF protection mechanism in Django through 1.2.7 and 1.3.x through 1.3.1 does not properly handle web-server configurations supporting arbitrary HTTP Host headers, which allows remote attackers to trigger unauthenticated forged requests via vectors involving a DNS CNAME record and a web page containing JavaScript code.

Affected (22)

Products: Djangoproject: Django

1 product

Configuration A

22 vulnerable

Vulnerable Software	Affected Versions
Djangoproject Django	Up to 1.2.6
Djangoproject Django	Version 0.91
Djangoproject Django	Version 0.95.1
Djangoproject Django	Version 0.95
Djangoproject Django	Version 0.96
Djangoproject Django	Version 1.0.1
Djangoproject Django	Version 1.0.2
Djangoproject Django	Version 1.0
Djangoproject Django	Version 1.1.0
Djangoproject Django	Version 1.1.2
Djangoproject Django	Version 1.1.3
Djangoproject Django	Version 1.1
Djangoproject Django	Version 1.2.1
Djangoproject Django	Version 1.2.1 2
Djangoproject Django	Version 1.2.2
Djangoproject Django	Version 1.2.3
Djangoproject Django	Version 1.2.4
Djangoproject Django	Version 1.2.5
Djangoproject Django	Version 1.2
Djangoproject Django	Version 1.3
Djangoproject Django	Version 1.3 alpha1
Djangoproject Django	Version 1.3 alpha2

Related CWEs

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References (16)

http://openwall.com/lists/oss-security/2011/09/11/1

Source: cve@mitre.org

Patch

http://openwall.com/lists/oss-security/2011/09/13/2

Source: cve@mitre.org

Patch

http://secunia.com/advisories/46614

Source: cve@mitre.org

http://www.debian.org/security/2011/dsa-2332

Source: cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=737366

Source: cve@mitre.org

Patch

https://hermes.opensuse.org/messages/14700881

Source: cve@mitre.org

https://www.djangoproject.com/weblog/2011/sep/09/

Source: cve@mitre.org

PatchVendor Advisory

https://www.djangoproject.com/weblog/2011/sep/10/127/

Source: cve@mitre.org

Patch

http://openwall.com/lists/oss-security/2011/09/11/1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://openwall.com/lists/oss-security/2011/09/13/2

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://secunia.com/advisories/46614

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2011/dsa-2332

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=737366

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://hermes.opensuse.org/messages/14700881

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.djangoproject.com/weblog/2011/sep/09/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://www.djangoproject.com/weblog/2011/sep/10/127/

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.