CVE-2009-4606
South River Technologies WebDrive Service 9.02 build 2232 - Bad Security Descriptor Privilege Escalation
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
South River Technologies WebDrive 9.02 build 2232 installs the WebDrive Service without a security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.
South River Technologies WebDrive v9.02 build 2232 instala el servicio de disco remoto sin un descriptor de seguridad, lo que permite a usuarios locales (1) parar el servicio a través del comando "stop", (2) ejecutar comandos arbitrarios como SYSTEM mediante el uso del comando "config" para modificar la variable "binPatch", o (3) reiniciar el servicio a través del comando "Start".
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-01-12 CVE Reserved
- 2010-01-13 CVE Published
- 2010-01-26 First Exploit
- 2023-09-06 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/59080 | Vdb Entry | |
| http://retrogod.altervista.org/9sg_south_river_priv.html | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/507323/100/0/threaded | Mailing List | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/53885 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/11264 | 2010-01-26 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/37083 | 2018-10-10 | |
| http://www.vupen.com/english/advisories/2009/2994 | 2018-10-10 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| South River Technologies Search vendor "South River Technologies" | Webdrive Search vendor "South River Technologies" for product "Webdrive" | 9.02 Search vendor "South River Technologies" for product "Webdrive" and version "9.02" | build_2232 |
Affected
| ||||||