CVE-2017-12815

Name of the Vulnerable Software and Affected Versions: Bomgar Remote Support Portal versions 52790 and earlier

Description: The issue exists due to insufficient restriction of the directory path name with limited access in the JavaStart.jar component of the Bomgar Remote Support Portal. This allows a remote attacker to create, modify, or delete arbitrary files. The JavaStart.jar applet can be downloaded from a Bomgar Remote Support Portal deployment and called from an arbitrary website using object and/or applet HTML tags. Successful exploitation results in file creation, modification, or deletion in the operating system with the privileges of the user who ran the Java applet.

Recommendations: For versions 52790 and earlier, consider restricting access to the JavaStart.jar applet until a patch is available. As a temporary workaround, avoid using the JavaStart.jar applet from untrusted sources to minimize the risk of exploitation.