Mike Cyr

**Name of the Vulnerable Software and Affected Versions** dnaLIMS version 4-2015s13 **Description** An issue was discovered in dnaLIMS, allowing an unauthenticated attacker to access system files readable by the web server user through a NUL-terminated directory traversal attack. This is achieved by exploiting the `seqID` parameter in the "viewAppletFsa.cgi" endpoint. **Recommendations** For dnaLIMS version 4-2015s13, consider restricting access to the "viewAppletFsa.cgi" endpoint to prevent exploitation. Additionally, avoid using the `seqID` parameter in this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** dnaLIMS version 4-2015s13 **Description** An issue was discovered in dnaLIMS where it stores passwords in plaintext. The passwords are stored in the /home/dna/spool/.pfile file. **Recommendations** For version 4-2015s13, consider encrypting the passwords stored in the .pfile file to prevent unauthorized access. As a temporary workaround, restrict access to the /home/dna/spool/.pfile file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** dnaLIMS version 4-2015s13 **Description** An issue was discovered in dnaLIMS, where it is vulnerable to session hijacking by guessing the `UID` parameter. **Recommendations** For dnaLIMS version 4-2015s13, consider implementing additional security measures to protect against session hijacking, such as restricting access to sensitive areas of the application or using more secure session management practices. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** dnaLIMS version 4-2015s13 **Description** The issue concerns an improperly protected administrative web shell, allowing unauthenticated command execution. This can be exploited through `cgi-bin/dna/sysAdmin.cgi` using specially crafted POST requests, enabling a remote attacker to execute arbitrary commands. The vulnerability is related to the lack of input data sanitization measures in the administrative web shell of the dnaLIMS software. **Recommendations** For dnaLIMS version 4-2015s13, consider disabling access to the `cgi-bin/dna/sysAdmin.cgi` endpoint until a patch is available to prevent exploitation. Restricting access to this administrative web shell can help minimize the risk of command execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.