You are here

U-063: RSA SecurID Software Token for Windows DLL Loading Error Lets Remote Users Execute Arbitrary Code

December 16, 2011 - 8:00am

Addthis

PROBLEM:

RSA SecurID Software Token for Windows DLL Loading Error Lets Remote Users Execute Arbitrary Code.

PLATFORM:

RSA SecurID Software Token 4.1 for Microsoft Windows

ABSTRACT:

A remote user can cause the target application to execute arbitrary code on the target user's system.

referenceĀ  LINKS:

SecurityTracker Alert ID: 1026426
ESA-2011-039
Secunia Advisory: SA45665
Securityfocus Advisory
CVE-2011-4141
RSA Online Fraud Resource Center

IMPACT ASSESSMENT:

High

Discussion:

A vulnerability was reported in RSA SecurID Software Token. A remote user can execute arbitrary code on the target system. A remote user can create a specially crafted DLL file on a remote share (e.g., WebDAV, SMB share). When the target user opens a Software Token file on the share, the application may load the remote user's DLL instead of the intended DLL and execute arbitrary code. This type of exploit is also known as "binary planting" or "DLL preloading".

Impact:

A remote user can cause the target application to execute arbitrary code on the target user's system..

Solution:

RSA strongly recommends that customers upgrade to RSA SecurID Software Token 4.1.1 for Microsoft Windows. To obtain the latest RSA product downloads, log on to RSA SecurCare

Addthis