NASLDB: ThinkVantage System Update < 3.14 SSL Certificate Issuer Spoofing
General
ID: 32443
Name: ThinkVantage System Update < 3.14 SSL Certificate Issuer Spoofing
Summary: Checks version in registry
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:F/RL:OF/RC:ND
Port: 139
Family: Windows
Type: Local
Description
The remote host is running ThinkVantage System Update, a software
distribution tool for Lenovo computers.
The version of System Update installed on the remote host reportedly
does not perform certificate chain verification when initiating an SSL
connection with an update server. An attacker who could redirect
connections to a malicious server could leverage this issue to send
specially crafted XML and EXE files in response to requests from
System Update, which would then lead to arbitrary code execution.
Exploiting
Exploit Available: True
Exploitability Ease: Exploits are available
Sources
CVE: CVE-2008-3249
OSVDB: 45621
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: –
Plugin Release: 2008/05/28
Plugin
Version: 1.9
Filename: thinkvantage_system_update_3_14.nasl
Filesize: 5183 bytes
MD5 Hash: 7951100815e0b8802dfbea6258ff87d0
Identification: SMB/Registry/Enumerated
Require Keys: SMB/Registry/Enumerated
Dependencies: "smb_hotfixes.nasl"
Copyright: This script is Copyright© 2008-2011 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack