KLA11658 Multiple vulnerabilities in FactoryTalk Activation Manager

Multiple vulnerabilities were found in FactoryTalk Activation Manager. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Vulnerability in certain versions of Wibu-Systems CodeMeter can be exploited remotely via specially designed WEB payload to perform cross-site scripting attacks;
2. Out-of-bounds writing vulnerability in custom string copying function of Imgrd.exe can be exploited remotely to execute arbitrary code;

Original advisories

FactoryTalk Activation Manager Vulnerabilities (need authorization)

Exploitation

Public exploits exist for this vulnerability.

Related products

FactoryTalk-Activation-Manager

CVE list

CVE-2017-13754 warning

CVE-2015-8277 critical

Solution

Update to the latest version

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

• XSS/CSS

Cross site scripting. Exploitation of vulnerabilities with this impact can lead to partial interception of information transmitted between user and site.

Affected Products

• FactoryTalk Activation Manager v4.00.02 and v4.01

Includes Wibu-Systems CodeMeter v6.50b and earlier

FactoryTalk Activation Manager v4.00.02 and earlier

Includes FlexNet Publisher v11.11.1.1 and earlier