cnvd - cnvd-2020-21498

CNVD-2020-21498

Vulnerability from cnvd - Published: 2020-04-03

Title

Paessler AG PRTG Network Monitor远程代码执行漏洞

Description

Paessler AG PRTG Network Monitor是德国Paessler AG公司的一款全功能网络监控管理软件。 PRTG Network Monitor 19.4.54.1506之前版本中存在远程代码执行漏洞，该漏洞源于在将参数传递到HttpTransactionSensor.exe二进制文件时，程序未能进行充分的清理操作。远程攻击者可通过创建新的HTTP Transaction Sensor并进行特定的设置利用该漏洞执行代码。

Severity

高

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法：

https://www.paessler.com/

Reference

https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/11/warnmeldung_cb-k19-1019.html https://nvd.nist.gov/vuln/detail/CVE-2019-11073

Impacted products

Name
Paessler AG PRTG Network Monitor <19.4.54.1506

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-11073"
    }
  },
  "description": "Paessler AG PRTG Network Monitor\u662f\u5fb7\u56fdPaessler AG\u516c\u53f8\u7684\u4e00\u6b3e\u5168\u529f\u80fd\u7f51\u7edc\u76d1\u63a7\u7ba1\u7406\u8f6f\u4ef6\u3002\n\nPRTG Network Monitor 19.4.54.1506\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728\u5c06\u53c2\u6570\u4f20\u9012\u5230HttpTransactionSensor.exe\u4e8c\u8fdb\u5236\u6587\u4ef6\u65f6\uff0c\u7a0b\u5e8f\u672a\u80fd\u8fdb\u884c\u5145\u5206\u7684\u6e05\u7406\u64cd\u4f5c\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u521b\u5efa\u65b0\u7684HTTP Transaction Sensor\u5e76\u8fdb\u884c\u7279\u5b9a\u7684\u8bbe\u7f6e\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a\r\n\r\nhttps://www.paessler.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-21498",
  "openTime": "2020-04-03",
  "products": {
    "product": "Paessler AG PRTG Network Monitor \u003c19.4.54.1506"
  },
  "referenceLink": "https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/11/warnmeldung_cb-k19-1019.html\r\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-11073",
  "serverity": "\u9ad8",
  "submitTime": "2020-03-18",
  "title": "Paessler AG PRTG Network Monitor\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

CVE-2019-11073 (GCVE-0-2019-11073)

Vulnerability from cvelistv5 – Published: 2020-03-16 18:41 – Updated: 2024-08-04 22:40

Summary

A Remote Code Execution vulnerability exists in PRTG Network Monitor before 19.4.54.1506 that allows attackers to execute code due to insufficient sanitization when passing arguments to the HttpTransactionSensor.exe binary. In order to exploit the vulnerability, remote authenticated administrators need to create a new HTTP Transaction Sensor and set specific settings when the sensor is executed.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	https://www.paessler.com/prtg/history/stable	x_refsource_MISC
	https://sensepost.com/blog/2019/being-stubborn-pa…	x_refsource_MISC
	https://www.bsi.bund.de/SharedDocs/Warnmeldungen/…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T22:40:16.289Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.paessler.com/prtg/history/stable"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sensepost.com/blog/2019/being-stubborn-pays-off-pt.-1-cve-2018-19204/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/11/warnmeldung_cb-k19-1019.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A Remote Code Execution vulnerability exists in PRTG Network Monitor before 19.4.54.1506 that allows attackers to execute code due to insufficient sanitization when passing arguments to the HttpTransactionSensor.exe binary. In order to exploit the vulnerability, remote authenticated administrators need to create a new HTTP Transaction Sensor and set specific settings when the sensor is executed."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-03-16T18:41:58",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.paessler.com/prtg/history/stable"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sensepost.com/blog/2019/being-stubborn-pays-off-pt.-1-cve-2018-19204/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/11/warnmeldung_cb-k19-1019.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2019-11073",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A Remote Code Execution vulnerability exists in PRTG Network Monitor before 19.4.54.1506 that allows attackers to execute code due to insufficient sanitization when passing arguments to the HttpTransactionSensor.exe binary. In order to exploit the vulnerability, remote authenticated administrators need to create a new HTTP Transaction Sensor and set specific settings when the sensor is executed."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.paessler.com/prtg/history/stable",
              "refsource": "MISC",
              "url": "https://www.paessler.com/prtg/history/stable"
            },
            {
              "name": "https://sensepost.com/blog/2019/being-stubborn-pays-off-pt.-1-cve-2018-19204/",
              "refsource": "MISC",
              "url": "https://sensepost.com/blog/2019/being-stubborn-pays-off-pt.-1-cve-2018-19204/"
            },
            {
              "name": "https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/11/warnmeldung_cb-k19-1019.html",
              "refsource": "MISC",
              "url": "https://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/CB/2019/11/warnmeldung_cb-k19-1019.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2019-11073",
    "datePublished": "2020-03-16T18:41:58",
    "dateReserved": "2019-04-10T00:00:00",
    "dateUpdated": "2024-08-04T22:40:16.289Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-21498

CVE-2019-11073 (GCVE-0-2019-11073)

Tags

Sightings

Nomenclature