PT-2019-14616 · Mobatek · Mobaxterm

Published

2019-09-14

Updated

2020-08-24

CVE-2019-16305

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MobaXterm versions 11.1 through 12.1

Description The protocol handler in MobaXterm is susceptible to command injection. An attacker can craft a link that, when accepted by the user, can lead to command execution. This is demonstrated by the MobaXterm://calc URI, which can trigger the execution of the calculator application.

Recommendations For MobaXterm versions 11.1 through 12.1, consider disabling the protocol handler as a temporary workaround until a patch is available. Restrict access to links that may trigger the MobaXterm protocol handler to minimize the risk of exploitation.

Exploit

Fix

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77

Related Identifiers

CVE-2019-16305

Affected Products

Mobaxterm

PT-2019-14616 · Mobatek · Mobaxterm

CVE-2019-16305

Weakness Enumeration

Related Identifiers

Affected Products

References · 3