Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Meinberg LANTIME Web Configuration Utility 6.16.008 - Arbitrary File Read Vulnerability (2)

🗓️ 14 Dec 2017 00:00:00Reported by Jakub PalaczynskiType 
zdt
 zdt🔗 0day.today👁 26 Views

Meinberg LANTIME Web Configuration Utility 6.16.008 Arbitrary File Read Vulnerabilit

Related
Code
ReporterTitlePublishedViews
Family
CNVD		Meinberg LANTIME Web Configuration Utility Directory Traversal Vulnerability
19 Dec 201700:00
cnvd
CVE		CVE-2017-16788
15 Dec 201718:00
cve
Cvelist		CVE-2017-16788
15 Dec 201718:00
cvelist
EUVD		EUVD-2017-7966
7 Oct 202500:30
euvd
NVD		CVE-2017-16788
15 Dec 201718:29
nvd
OSV		CVE-2017-16788
15 Dec 201718:29
osv
Packet Storm		Meinberg LANTIME Web Configuration Utility 6.16.008 Arbitrary File Upload
13 Dec 201700:00
packetstorm
Prion		Directory traversal
15 Dec 201718:29
prion
Tenable Nessus		Meinberg Multiple Vulnerabilities in LANTIME Products (CVE-2017-16788)
2 May 202400:00
nessus
Title: Meinberg LANTIME Web Configuration Utility - Arbitrary File Upload
(Path Traversal)
Author: Jakub Palaczynski
CVE: CVE-2017-16788


Exploit was tested on:
======================

Meinberg LANTIME Web Configuration Utility 6.16.008


Vulnerability affects:
======================
All LTOS6 firmware releases before 6.24.004


Vulnerability:
**************

Arbitrary File Upload (Path Traversal):
=======================================

It is possible to upload any file to any location on the server.

Proof of Concept:
"Upload Groupkey" functionality allows for uploading any file to any
location on the server. An attacker may use path traversal to store files
in for example cron.d directory and execute them automatically to get root
access on the system.
This vulnerability allows for getting root access on the system from
Admin-User access.


#  0day.today [2018-02-06]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
14 Dec 2017 00:00Current
7High risk
Vulners AI Score7
EPSS0.01341
meinberg lantimeweb configurationarbitrary file readpath traversaljakub palaczynskicve-2017-16788ltos6 firmware6.24.004upload groupkeycron.d directoryadmin-user accessroot access
26