cnvd - cnvd-2018-03343

CNVD-2018-03343

Vulnerability from cnvd - Published: 2018-02-14

Title

NetGain Enterprise Manager身份验证绕过漏洞

Description

Netgain Enterprise Manager是新加坡网利系统（NetGain Systems）公司的一套IT资产监控管理软件。 NetGain Enterprise Manager中的MainFilter servlet存在身份验证绕过漏洞，该漏洞源于程序未能正确的匹配字符串。远程攻击者可利用该漏洞绕过身份验证。

Severity

中

Patch Name

NetGain Enterprise Manager身份验证绕过漏洞的补丁

Patch Description

Formal description

厂商已发布漏洞修复程序，请及时关注更新： http://www.netgain-systems.com/http://www.zerodayinitiative.com/advisories/ZDI-17-955/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2017-16590 https://zerodayinitiative.com/advisories/ZDI-17-955/ https://www.securityfocus.com/bid/102322

Impacted products

Name
NetGain Systems Enterprise Manager 7.2.699 build 1001

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "102322"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-16590",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16590"
    }
  },
  "description": "Netgain Enterprise Manager\u662f\u65b0\u52a0\u5761\u7f51\u5229\u7cfb\u7edf\uff08NetGain Systems\uff09\u516c\u53f8\u7684\u4e00\u5957IT\u8d44\u4ea7\u76d1\u63a7\u7ba1\u7406\u8f6f\u4ef6\u3002\r\n\r\nNetGain Enterprise Manager\u4e2d\u7684MainFilter servlet\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u5339\u914d\u5b57\u7b26\u4e32\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u3002",
  "discovererName": "rgod",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.netgain-systems.com/http://www.zerodayinitiative.com/advisories/ZDI-17-955/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-03343",
  "openTime": "2018-02-14",
  "patchDescription": "Netgain Enterprise Manager\u662f\u65b0\u52a0\u5761\u7f51\u5229\u7cfb\u7edf\uff08NetGain Systems\uff09\u516c\u53f8\u7684\u4e00\u5957IT\u8d44\u4ea7\u76d1\u63a7\u7ba1\u7406\u8f6f\u4ef6\u3002\r\n\r\nNetGain Enterprise Manager\u4e2d\u7684MainFilter servlet\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u5339\u914d\u5b57\u7b26\u4e32\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u3002\r\n\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "NetGain Enterprise Manager\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "NetGain Systems Enterprise Manager 7.2.699 build 1001"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-16590\r\nhttps://zerodayinitiative.com/advisories/ZDI-17-955/\r\nhttps://www.securityfocus.com/bid/102322",
  "serverity": "\u4e2d",
  "submitTime": "2018-01-11",
  "title": "NetGain Enterprise Manager\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e"
}

CVE-2017-16590 (GCVE-0-2017-16590)

Vulnerability from cvelistv5 – Published: 2018-01-23 01:00 – Updated: 2024-08-05 20:27

Summary

This vulnerability allows remote attackers to bypass authentication on vulnerable installations of NetGain Systems Enterprise Manager 7.2.699 build 1001. User interaction is required to exploit this vulnerability. The specific flaw exists within the MainFilter servlet. The issue results from the lack of proper string matching inside the doFilter method. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of Administrator. Was ZDI-CAN-5099.

Severity ?

No CVSS data available.

CWE

CWE-289 - Authentication Bypass by Alternate Name

Assigner

zdi

References

URL

Tags

https://zerodayinitiative.com/advisories/ZDI-17-955

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	NetGain Systems	NetGain Systems Enterprise Manager	Affected: 7.2.699 build 1001

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T20:27:04.223Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://zerodayinitiative.com/advisories/ZDI-17-955"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "NetGain Systems Enterprise Manager",
          "vendor": "NetGain Systems",
          "versions": [
            {
              "status": "affected",
              "version": "7.2.699 build 1001"
            }
          ]
        }
      ],
      "datePublic": "2017-12-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "This vulnerability allows remote attackers to bypass authentication on vulnerable installations of NetGain Systems Enterprise Manager 7.2.699 build 1001. User interaction is required to exploit this vulnerability. The specific flaw exists within the MainFilter servlet. The issue results from the lack of proper string matching inside the doFilter method. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of Administrator. Was ZDI-CAN-5099."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-289",
              "description": "CWE-289-Authentication Bypass by Alternate Name",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-23T00:57:01",
        "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "shortName": "zdi"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://zerodayinitiative.com/advisories/ZDI-17-955"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "zdi-disclosures@trendmicro.com",
          "ID": "CVE-2017-16590",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "NetGain Systems Enterprise Manager",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "7.2.699 build 1001"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "NetGain Systems"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "This vulnerability allows remote attackers to bypass authentication on vulnerable installations of NetGain Systems Enterprise Manager 7.2.699 build 1001. User interaction is required to exploit this vulnerability. The specific flaw exists within the MainFilter servlet. The issue results from the lack of proper string matching inside the doFilter method. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of Administrator. Was ZDI-CAN-5099."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-289-Authentication Bypass by Alternate Name"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://zerodayinitiative.com/advisories/ZDI-17-955",
              "refsource": "MISC",
              "url": "https://zerodayinitiative.com/advisories/ZDI-17-955"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
    "assignerShortName": "zdi",
    "cveId": "CVE-2017-16590",
    "datePublished": "2018-01-23T01:00:00",
    "dateReserved": "2017-11-06T00:00:00",
    "dateUpdated": "2024-08-05T20:27:04.223Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-03343

CVE-2017-16590 (GCVE-0-2017-16590)

Tags

Sightings

Nomenclature