CVE-2015-4674

The autoupdate implementation in TimeDoctor Pro 1.4.72.3 on Windows relies on unsigned installer files that are retrieved without use of SSL, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://seclists.org/fulldisclosure/2015/Jun/105	Exploit
http://www.securityfocus.com/archive/1/535881/100/700/threaded
http://www.securityfocus.com/bid/75572
http://seclists.org/fulldisclosure/2015/Jun/105	Exploit
http://www.securityfocus.com/archive/1/535881/100/700/threaded
http://www.securityfocus.com/bid/75572

Configurations

Configuration 1 (hide)

cpe:2.3:a:timedoctor:timedoctor:1.4.72.3:*:*:*:pro:*:*:*

History

21 Nov 2024, 02:31

Type	Values Removed	Values Added
References	~~() http://seclists.org/fulldisclosure/2015/Jun/105 - Exploit~~	() http://seclists.org/fulldisclosure/2015/Jun/105 - Exploit
References	~~() http://www.securityfocus.com/archive/1/535881/100/700/threaded -~~	() http://www.securityfocus.com/archive/1/535881/100/700/threaded -
References	~~() http://www.securityfocus.com/bid/75572 -~~	() http://www.securityfocus.com/bid/75572 -

Information

Published : 2015-08-07 01:59

Updated : 2024-11-21 02:31

NVD link : CVE-2015-4674

Mitre link : CVE-2015-4674

CVE.ORG link : CVE-2015-4674

JSON object : View

Products Affected

timedoctor

timedoctor

CWE

CWE-345

Insufficient Verification of Data Authenticity

{"id": "CVE-2015-4674", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-08-07T01:59:00.130", "references": [{"url": "http://seclists.org/fulldisclosure/2015/Jun/105", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/535881/100/700/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/75572", "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2015/Jun/105", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/535881/100/700/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/75572", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-345"}]}], "descriptions": [{"lang": "en", "value": "The autoupdate implementation in TimeDoctor Pro 1.4.72.3 on Windows relies on unsigned installer files that are retrieved without use of SSL, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file."}, {"lang": "es", "value": "Vulnerabilidad en la implementaci\u00f3n de autoupdate en TimeDoctor Pro 1.4.72.3 en Windows, conf\u00eda en archivos de instalaci\u00f3n sin firmar que son recuperados sin el uso de SSL, lo que hace m\u00e1s f\u00e1cil para atacantes man-in-the-middle ejecutar c\u00f3digo arbitrario a trav\u00e9s de un archivo manipulado."}], "lastModified": "2024-11-21T02:31:32.057", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:timedoctor:timedoctor:1.4.72.3:*:*:*:pro:*:*:*", "vulnerable": true, "matchCriteriaId": "BF1C4BE0-BC8A-4977-93B1-51C0B26B10C4"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}