Description
The default configuration of the auth/saml plugin in Mahara before 1.4.2 sets the "Match username attribute to Remote username" option to false, which allows remote SAML IdP servers to spoof users of other SAML IdP servers by using the same internal username.
References (5)
Core 5
Core References
Issue Tracking x_refsource_confirm
https://bugs.launchpad.net/mahara/+bug/932909
Issue Tracking, Patch x_refsource_confirm
http://gitorious.org/mahara/mahara/commit/f07be6020e70fa8f53cd77fdcd63e7fd7ff8aaea
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2012/dsa-2467
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/05/11/9
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/05/12/4
Scores
EPSS
0.0207
EPSS Percentile
79.0%
Details
CWE
CWE-16
CWE-284
CWE-287
Status
published
Products (33)
debian/debian_linux
6.0
mahara/mahara
0.9.0
mahara/mahara
0.9.1
mahara/mahara
0.9.2
mahara/mahara
1.0.0
mahara/mahara
1.0.1
mahara/mahara
1.0.2
mahara/mahara
1.0.3
mahara/mahara
1.0.4
mahara/mahara
1.0.5
... and 23 more
Published
Jul 12, 2012
Tracked Since
Feb 18, 2026