CVE-2021-27197

Sažetak

DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a malicious user. The vulnerability is triggered when a remote attacker crafts an HTML page (e.g., with "OBJECT classid=" and "<SCRIPT language='vbscript'>") to overwrite arbitrary files.

Reference

https://github.com/vitorespf/Advisories/blob/master/Pelco_Digital_Sentry_Server_AFW.txt
https://support.pelco.com/s/article/What-is-the-Digital-Sentry-software-release-revision-history

CVSS

Base:	8.8
Impact:	9.2
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:C/A:C

Zadnje važnije ažuriranje

19-02-2021 - 19:33

Objavljeno

12-02-2021 - 16:15