PT-2018-10328 · Quest · Quest Kace System Management Appliance

Publicado

2018-05-31

Atualizado

2018-06-28

CVE-2018-11137

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Quest KACE System Management Appliance version 8.0.318

Description The issue allows for the reading of arbitrary files with 'www' privileges via Directory Traversal in the '/common/download attachment.php' script. This can be achieved by abusing the checksum parameter. No administrator privileges are required to execute the script.

Recommendations For Quest KACE System Management Appliance version 8.0.318, consider restricting access to the '/common/download attachment.php' script until a patch is available. As a temporary workaround, avoid using the checksum parameter in the affected script to minimize the risk of exploitation.

Exploit

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2018-11137

Produtos afetados

Quest Kace System Management Appliance

PT-2018-10328 · Quest · Quest Kace System Management Appliance

CVE-2018-11137

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3