You are here

V-215: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities

August 9, 2013 - 2:56am

Addthis

PROBLEM:

Two vulnerabilities have been reported in NetworkMiner, which can be exploited by malicious people to compromise a user's system.

PLATFORM:

NetworkMiner 1.x

ABSTRACT:

The vulnerabilities are reported in versions 1.4.1 and prior.

REFERENCE LINKS:

Secunia Advisory SA54431
 

IMPACT ASSESSMENT:

High

DISCUSSION:

The application loads certain libraries in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening a PCAP file located on a remote WebDAV or SMB share.Certain input when extracting files is not properly verified before being used. This can be exploited to e.g. extract files to arbitrary locations via directory traversal sequences by providing a malicious PCAP file. Successful exploitation of the vulnerabilities allows execution of arbitrary code.

IMPACT:

System access
 

SOLUTION:

Update to version 1.5.

 

Addthis