PT-2017-2604 · U.Motion · U.Motion Builder

Published

2017-06-27

Updated

2017-09-27

CVE-2017-9956

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions U.motion Builder versions 1.2.1 and prior

Description The issue is caused by the use of a hard-coded valid session ID in the system. This allows a remote attacker to bypass the authentication procedure by using a specially crafted user cookie that includes the valid session ID. The attacker can exploit this to gain unauthorized access.

Recommendations For versions 1.2.1 and prior, consider disabling the use of session IDs in HTTP cookies as a temporary workaround until a patch is available. Restrict access to the system to minimize the risk of exploitation. Avoid using the hard-coded session ID in web requests until the issue is resolved.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798CWE-547

Related Identifiers

BDU:2017-01822

CVE-2017-9956

Affected Products

U.Motion Builder

PT-2017-2604 · U.Motion · U.Motion Builder

CVE-2017-9956

Weakness Enumeration

Related Identifiers

Affected Products

References · 8