IBM Endpoint Manager Mobile Device Management Component Unauthenticated Remote Code Execution (swg21691701)

high Nessus Plugin ID 80866

Synopsis

The remote host is affected by an unauthenticated remote code execution vulnerability.

Description

The IBM Endpoint Manager Mobile Device Manager extension installed on the remote host is affected by a remote code execution vulnerability due to its use of static secret_token values. An unauthenticated, remote attacker, using a crafted malicious session cookie, can execute arbitrary code with administrator privileges when the cookie is unmarshalled by a Ruby application.

Solution

Upgrade to version 9.0.60100 or later.

See Also

http://www-01.ibm.com/support/docview.wss?uid=swg21691701

http://www.nessus.org/u?ab7463c8

Plugin Details

Severity: High

ID: 80866

File Name: ibm_tem_mdm_swg21691701.nbin

Version: 1.110

Type: remote

Family: CGI abuses

Published: 1/20/2015

Updated: 7/17/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2014-6140

Vulnerability Information

CPE: cpe:/a:ibm:tivoli_endpoint_manager_mobile_device_management, x-cpe:/a:ibm:endpoint_manager_for_mobile_devices

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 12/1/2014

Vulnerability Publication Date: 12/2/2014

Reference Information

CVE: CVE-2014-6140

BID: 71424, 71507