Main Vulnerability Database Vulnerabilities #VU37611

Format string error in Enterprise Manager - CVE-2017-16602

Published: January 23, 2018 / Updated: August 8, 2020

Vulnerability identifier: #VU37611

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2017-16602

CWE-ID: CWE-134

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: F5 Networks

Affected software:
Enterprise Manager

Detailed vulnerability description

The vulnerability allows a remote authenticated user to execute arbitrary code.

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the org.apache.jsp.u.jsp.tools.exec_jsp servlet, which listens on TCP port 8081 by default. When parsing the command parameter, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code under the context of Administrator. Was ZDI-CAN-5193.

How to mitigate CVE-2017-16602

Install update from vendor's website.

Sources

https://zerodayinitiative.com/advisories/ZDI-17-967

Format string error in Enterprise Manager - CVE-2017-16602

Detailed vulnerability description

How to mitigate CVE-2017-16602

Sources

Please verify you're human