{"id": "VU:487617", "type": "cert", "bulletinFamily": "info", "title": "Secure Elements Class 5 AVR server fails to properly authenticate session start messages", "description": "### Overview \n\nThe Secure Elements Class 5 AVR server fails to properly authenticate \"session start\" messages. This may allow an attacker to cause the server to initiate TCP connections to arbitrary destinations, which can cause a denial of service to both the server and the specified target.\n\n### Description \n\n**Class 5 AVR**\n\nSecure Elements Class 5 AVR (Automated Vulnerability Remediation) is a security product that monitors and enforces security policies on network assets. Class 5 AVR is now known as C5 EVM (Enterprise Vulnerability Management). The Class 5 AVR software includes both server and client components. \n \n**Class 5 AVR client** \n \nThe Class 5 AVR client listens on `60000/udp` and an additional tcp port. This client receives commands sent by the Class 5 AVR server. \n \n**Class 5 AVR server** \n \nThe Class 5 AVR server is available as an appliance or as software that runs on commodity hardware. The Class 5 AVR server contains information about network assets, vulnerabilities, and remediation history. \n \n**The problem** \n \nThe Class 5 AVR server fails to properly authenticate \"session start\" messages. \n \n--- \n \n### Impact \n\nA remote, unauthenticated attacker may be able to cause the server to initiate TCP connections to arbitrary destinations, which can cause a denial of service to both the server and the specified target. \n \n--- \n \n### Solution \n\n**Upgrade or patch** \nThis issue has been resolved in C5 EVM 2.8.1. \n \n--- \n \n### Vendor Information\n\n487617\n\nFilter by status: All Affected Not Affected Unknown\n\nFilter by content: __ Additional information available\n\n__ Sort by: Status Alphabetical\n\nExpand all\n\n**Javascript is disabled. Click here to view vendors.**\n\n### Secure Elements __ Affected\n\nNotified: February 06, 2006 Updated: May 30, 2006 \n\n### Status\n\nAffected\n\n### Vendor Statement\n\n**Remediation in C5 EVM version 2.8.1 and above**\n\nC5 EVM Sensor registrations are invalidated when a Denial Of Service (DOS) attack is suspected / detected.\n\n### Vendor Information \n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | | \nTemporal | | \nEnvironmental | | \n \n \n\n\n### References \n\n<http://www.secure-elements.com/products/index.htm>\n\n### Acknowledgements\n\nThanks to the NOAA N-CIRT Lab for reporting this vulnerability.\n\nThis document was written by Will Dormann.\n\n### Other Information\n\n**CVE IDs:** | [None](<http://web.nvd.nist.gov/vuln/detail/None>) \n---|--- \n**Severity Metric:** | 0.31 \n**Date Public:** | 2006-05-30 \n**Date First Published:** | 2006-05-30 \n**Date Last Updated: ** | 2007-05-04 18:52 UTC \n**Document Revision: ** | 7 \n", "published": "2006-05-30T00:00:00", "modified": "2007-05-04T18:52:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.kb.cert.org/vuls/id/487617", "reporter": "CERT", "references": ["http://www.secure-elements.com/products/index.htm"], "cvelist": [], "lastseen": "2020-09-18T20:43:13", "viewCount": 1, "enchantments": {"score": {"value": 0.6, "vector": "NONE", "modified": "2020-09-18T20:43:13", "rev": 2}, "dependencies": {"references": [], "modified": "2020-09-18T20:43:13", "rev": 2}, "vulnersScore": 0.6}}

{}