vendor:
SUSIAccess
by:
james fitts
7
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: SUSIAccess
Affected Version From: Advantech SUSIAccess <= 3.0
Affected Version To: Advantech SUSIAccess <= 3.0
Patch Exists: YES
Related CWE: CVE-2016-9349, CVE-2016-9351
CPE: a:advantech:susiaccess
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows 7 SP1
2017
Advantech SUSIAccess RecoveryMgmt File Upload
This PoC will upload AcronisInstaller.exe to the root of C:. It will use the directory traversal vulnerability to pull down the log files and parse for the base64 encoded credentials. Once it has that, it will use them to log into the application and upload the malicious zip file.
Mitigation:
Ensure that the application is up to date and patched with the latest security updates.
