Joomla! jNews Component Open Flash Chart Arbitrary File Creation Vulnerability

SECUNIA ADVISORY ID:
SA51333

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/51333/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=51333

RELEASE DATE:
2012-11-19
DESCRIPTION:
A vulnerability has been reported in the jNews component for Joomla!,
which can be exploited by malicious people to compromise a vulnerable
system.

The vulnerability is caused due to the application bundling a
vulnerable version of Open Flash Chart.

This might be related to:
SA37903

The vulnerability is reported in versions prior to 7.9.1.

SOLUTION:
Update to version 7.9.1.

ORIGINAL ADVISORY:
http://www.joobi.co/index.php?option=com_content&view=article&id=8560
http://docs.joomla.org/Vulnerable_Extensions_List#jNews