Privilege Escalation Holes Fixed
Tuesday, September 22, 2015 @ 07:09 PM gHale
Resource Data Management created a new version to mitigate two vulnerabilities in its Data Manager application, according to a report on ICS-CERT.
These vulnerabilities, discovered by independent researcher, Maxim Rupp, are remotely exploitable. Data Manager versions prior to 2.2 suffer from the issue.
Privilege escalation allows an attacker to gain elevated access to resources normally protected from an application or user. This includes altering logs and parameters.
A cross-site request forgery (CSRF) attack may allow the web browser to perform an unwanted action on a trusted site for which the user has current authentication.
Resource Data Management is a UK-based company that maintains offices in several countries around the world, including the U.S. and Asia.
The affected product, Data Manager, is a web-based SCADA monitoring system. According to Resource Data Management, Data Manager sees action across several sectors including critical manufacturing, healthcare and public health, and information technology. Resource Data Management estimates these products see use primarily in the U.S., UK, and in Asia.
For the privilege escalation issue, a valid user can change the password for any other user, including administrators, to increase their privileges on the system.
CVE-2015-6470 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 8.8.
A CSRF attack occurs when a malicious program causes a web browser to perform an unwanted action on a trusted site for which the user has currently authentication.
CVE-2015-6468 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 6.5.
No known public exploits specifically target these vulnerabilities. An attacker with a low skill would be able to exploit these vulnerabilities.
Resource Data Management has developed Data Manager 2.2 that fixes both these vulnerabilities.
Click here to download Version 2.2.