CVE-2015-5473

Name of the Vulnerable Software and Affected Versions Samsung SyncThru 6 versions prior to 1.0

Description The vulnerability exists in the Samsung SyncThru 6 web application due to incorrect restriction of the directory path name with limited access. Exploitation of the vulnerability may allow a remote attacker to execute arbitrary code with SYSTEM privileges using a specially crafted GET request with parameters such as uploadCloning.html, fileupload.html, uploadFirmware.html, or upload/driver. The vulnerability also allows a remote attacker to delete arbitrary files via unspecified parameters to upload/updateDriver or upload/addDriver.

Recommendations For Samsung SyncThru 6 versions prior to 1.0, update to version 1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable servlets, such as DriverFileUploadServlet, FileUploadController, and AddDriverFileServlet, until a patch is available. Avoid using the parameters uploadCloning.html, fileupload.html, uploadFirmware.html, or upload/driver in the affected API endpoints until the issue is resolved.