=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2011/VULN294
_____________________________________________________________________

DATE                      : 06/04/2011

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running Joomla! version 1.5.x prior to 1.5.23.

======================================================================
http://developer.joomla.org/security/news/9-security/10-core-security/340-20110401-core-information-disclosure.html
______________________________________________________________________

   [20110401] - Core - Information Disclosure

     * Project: Joomla!
     * SubProject: All
     * Severity: Low
     * Versions: 1.5.22 and earlier
     * Exploit type: Information Disclosure
     * Reported Date: 2010-December-08
     * Fixed Date: 2011-April-04

Description

Inadequate error checking causes information disclosure.


Affected Installs

Joomla! version 1.5.22 and all previous 1.5 versions


Solution

Upgrade to the latest Joomla! version (1.5.23 or later)

Reported by Hannes Papenberg

Contact

The JSST at the Joomla! Security Center.

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 23 - 25 Rue Daviel    | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================