Detections
Analytics
Lenovo ThinkManagement Console RunAMTCommand Operation -PutUpdateFileCore Command Parsing Arbitrary File Upload
critical Nessus Plugin ID 58654
Language:
Synopsis
The remote web server hosts an application that allows arbitrary code execution.Description
The version of Lenovo ThinkManagement Console hosted on the remote web server contains a flaw in the 'ServerSetup.asmx' script that allows a remote, unauthenticated attacker to upload and run arbitrary ASP scripts with the privileges of the web user.In addition, this version of Lenovo ThinkManagement Console may be affected by a file deletion vulnerability. However, Nessus has not tested for this.
Solution
Contact the vendor for patches.See Also
https://community.ivanti.com/login.jspa?referer=https://community.ivanti.com/docs/DOC-24787
Plugin Details
Severity: Critical
ID: 58654
File Name: lenovo_thinkmanagement_console_remote_code.nasl
Version: 1.14
Type: remote
Family: CGI abuses
Published: 4/10/2012
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.3
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 9.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:landesk:lenovo_thinkmanagement_console
Required KB Items: www/thinkmanagement_console
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Patch Publication Date: 2/6/2012
Vulnerability Publication Date: 2/15/2012
Exploitable With
CANVAS (White_Phosphorus)
Core Impact
Metasploit (LANDesk Lenovo ThinkManagement Console Remote Command Execution)
Elliot (Lenovo ThinkManagement Console 9.0.3 File Upload)
ExploitHub (EH-12-326)
Reference Information
CVE: CVE-2012-1195
BID: 52023
Secunia: 47666