PT-2020-15592 · Barracuda · Barracudadrive

Bobby Cooke

Published

2020-09-04

Updated

2020-09-16

CVE-2020-23834

CVSS v3.1

8.8

High

Vector

AC:L/AV:L/A:H/C:H/I:H/PR:L/S:C/UI:N

Name of the Vulnerable Software and Affected Versions BarracudaDrive version 6.5

Description The issue concerns insecure service file permissions in the bd service, allowing local attackers to escalate privileges to admin. This can be achieved by replacing the %SYSTEMDRIVE%bdbd.exe file. Upon the computer's next start, the new bd.exe will be executed with LocalSystem privileges.

Recommendations For BarracudaDrive version 6.5, ensure proper file permissions are set for the bd service to prevent unauthorized access and modification of the %SYSTEMDRIVE%bdbd.exe file. As a temporary workaround, consider restricting write access to the %SYSTEMDRIVE%bd directory to minimize the risk of exploitation.

Exploit

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2020-23834

Affected Products

Barracudadrive

PT-2020-15592 · Barracuda · Barracudadrive

CVE-2020-23834

Weakness Enumeration

Related Identifiers

Affected Products

References · 4