PT-2017-3110 · Mobatek · Mobaxterm

Published

2017-09-18

Updated

2020-07-30

CVE-2017-15376

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MobaXterm version 10.4

Description The issue is related to the TELNET service in MobaXterm, which does not require authentication. This allows remote attackers to execute arbitrary commands via TCP port 23. The lack of authentication procedure in the TELNET service enables remote attackers to exploit this issue and perform unauthorized actions.

Recommendations For MobaXterm version 10.4, consider disabling the TELNET service until a patch is available to prevent remote attackers from executing arbitrary commands. Restrict access to TCP port 23 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Authentication

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306CWE-94

Related Identifiers

BDU:2017-02508

CVE-2017-15376

Affected Products

Mobaxterm

PT-2017-3110 · Mobatek · Mobaxterm

CVE-2017-15376

Weakness Enumeration

Related Identifiers

Affected Products

References · 4