cnvd - cnvd-2017-34915

CNVD-2017-34915

Vulnerability from cnvd - Published: 2017-11-22

Title

Cisco FindIT Network Discovery Utility本地任意代码执行漏洞

Description

Cisco FindIT Network Discovery Utility是美国思科（Cisco）公司的一款网络设备管理器。该产品提供Cisco网络设备的管理功能。 Cisco FindIT Network Discovery Utility中存在本地任意代码执行漏洞，该漏洞源于程序加载了其他DLL文件的恶意副本。本地攻击者可通过向主机系统的搜索路径中放置受影响的DLL利用该漏洞向系统中加载恶意的DLL文件，影响设备的可用性、完整性和保密性。

Severity

中

Formal description

厂商尚未提供漏洞修复方案，请关注厂商主页及时更新： https://www.cisco.com

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-findit

Impacted products

Name
Cisco FindIT Network Discovery Utility

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "101896"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-12314"
    }
  },
  "description": "Cisco FindIT Network Discovery Utility\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u7f51\u7edc\u8bbe\u5907\u7ba1\u7406\u5668\u3002\u8be5\u4ea7\u54c1\u63d0\u4f9bCisco\u7f51\u7edc\u8bbe\u5907\u7684\u7ba1\u7406\u529f\u80fd\u3002\r\n\r\nCisco FindIT Network Discovery Utility\u4e2d\u5b58\u5728\u672c\u5730\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u52a0\u8f7d\u4e86\u5176\u4ed6DLL\u6587\u4ef6\u7684\u6076\u610f\u526f\u672c\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411\u4e3b\u673a\u7cfb\u7edf\u7684\u641c\u7d22\u8def\u5f84\u4e2d\u653e\u7f6e\u53d7\u5f71\u54cd\u7684DLL\u5229\u7528\u8be5\u6f0f\u6d1e\u5411\u7cfb\u7edf\u4e2d\u52a0\u8f7d\u6076\u610f\u7684DLL\u6587\u4ef6\uff0c\u5f71\u54cd\u8bbe\u5907\u7684\u53ef\u7528\u6027\u3001\u5b8c\u6574\u6027\u548c\u4fdd\u5bc6\u6027\u3002",
  "discovererName": "Stefan Kanthak",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u53ca\u65f6\u66f4\u65b0\uff1a\r\nhttps://www.cisco.com",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-34915",
  "openTime": "2017-11-22",
  "products": {
    "product": "Cisco FindIT Network Discovery Utility"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-findit",
  "serverity": "\u4e2d",
  "submitTime": "2017-11-21",
  "title": "Cisco FindIT Network Discovery Utility\u672c\u5730\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

CVE-2017-12314 (GCVE-0-2017-12314)

Vulnerability from cvelistv5 – Published: 2017-11-16 07:00 – Updated: 2024-08-05 18:36

Summary

A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to the device availability, confidentiality, and integrity, aka Insecure Library Loading. The vulnerability is due to the application loading a malicious copy of a specific, nondefined DLL file instead of the DLL file it was expecting. An attacker could exploit this vulnerability by placing an affected DLL within the search path of the host system. An exploit could allow the attacker to load a malicious DLL file into the system, thus partially compromising confidentiality, integrity, and availability on the device. Cisco Bug IDs: CSCvf37955.

Severity ?

No CVSS data available.

CWE

CWE-427

Assigner

cisco

References

URL

Tags

	https://tools.cisco.com/security/center/content/C…	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/101896	vdb-entryx_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	Cisco FindIT Discovery Utility	Affected: Cisco FindIT Discovery Utility

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:36:55.969Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-findit"
          },
          {
            "name": "101896",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/101896"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco FindIT Discovery Utility",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco FindIT Discovery Utility"
            }
          ]
        }
      ],
      "datePublic": "2017-11-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to the device availability, confidentiality, and integrity, aka Insecure Library Loading. The vulnerability is due to the application loading a malicious copy of a specific, nondefined DLL file instead of the DLL file it was expecting. An attacker could exploit this vulnerability by placing an affected DLL within the search path of the host system. An exploit could allow the attacker to load a malicious DLL file into the system, thus partially compromising confidentiality, integrity, and availability on the device. Cisco Bug IDs: CSCvf37955."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-427",
              "description": "CWE-427",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-11-21T10:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-findit"
        },
        {
          "name": "101896",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/101896"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2017-12314",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco FindIT Discovery Utility",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco FindIT Discovery Utility"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to the device availability, confidentiality, and integrity, aka Insecure Library Loading. The vulnerability is due to the application loading a malicious copy of a specific, nondefined DLL file instead of the DLL file it was expecting. An attacker could exploit this vulnerability by placing an affected DLL within the search path of the host system. An exploit could allow the attacker to load a malicious DLL file into the system, thus partially compromising confidentiality, integrity, and availability on the device. Cisco Bug IDs: CSCvf37955."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-427"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-findit",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-findit"
            },
            {
              "name": "101896",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/101896"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2017-12314",
    "datePublished": "2017-11-16T07:00:00",
    "dateReserved": "2017-08-03T00:00:00",
    "dateUpdated": "2024-08-05T18:36:55.969Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-34915

CVE-2017-12314 (GCVE-0-2017-12314)

Tags

Sightings

Nomenclature