Evernote < 5.8.1 ActiveX Control Arbitrary File Overwrite

high Nessus Plugin ID 85448

Synopsis

The remote Windows host has an ActiveX control installed that is affected by a file overwrite vulnerability.

Description

The version of Evernote installed on the remote Windows host is prior to 5.8.1. It is, therefore, affected by an arbitrary file overwrite vulnerability in the EvernoteIE.dll ActiveX control due to using the writeFileContent(), LoadFile(), and ReadFileContent() methods in an insecure manner. A remote, unauthenticated attacker can exploit this by tricking a user into opening a specially crafted web page, allowing the attacker to read and overwrite arbitrary files.

Solution

Upgrade to Evernote 5.8.1 or later. Alternatively, disable the ActiveX control.

See Also

https://discussion.evernote.com/topic/79359-evernote-for-windows-581/

Plugin Details

Severity: High

ID: 85448

File Name: evernote_5_8.nasl

Version: 1.4

Type: local

Agent: windows

Family: Windows

Published: 8/17/2015

Updated: 8/8/2018

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/a:evernote:evernote

Required KB Items: SMB/Registry/Enumerated, installed_sw/Evernote

Patch Publication Date: 12/18/2014

Vulnerability Publication Date: 7/11/2015