Vulnerability Note VU#280844
Cryoserver Security Appliance vulnerable to privilege escalation
Original Release date: 07 Oct 2014 | Last revised: 07 Oct 2014

Overview
Cryoserver Security Appliance 7.3.x vulnerable to privilege escalation

Description
CWE-264: Permissions, Privileges, and Access Controls

Cryoserver Security Appliance 7.3.x does not properly assign permission to the /etc/init.d/cryoserver shell script and allows the default support account to modify it using the /bin/cryo-mgmt script.

Impact
An authenticated attacker may be able to gain root access to the appliance.

Solution
The CERT/CC is currently unaware of a practical solution to this problem.

Vendor Information (Learn More)

VendorStatusDate NotifiedDate UpdatedCryoserverUnknown18 Aug 201418 Aug 2014If you are a vendor and your product is affected, let
us know.

CVSS Metrics (Learn More)

Group
Score
Vector

Base
7.7
AV:A/AC:L/Au:S/C:C/I:C/A:C

Temporal
6.6
E:POC/RL:U/RC:UR

Environmental
4.9
CDP:ND/TD:M/CR:ND/IR:ND/AR:ND

References

http://www.cryoserver.com/appliance/
http://cwe.mitre.org/data/definitions/264.html

Credit

Thanks to Chris Hernandez for reporting this vulnerability.
This document was written by Chris King.

Other Information

CVE IDs:
CVE-2014-4867

Date Public:
07 Oct 2014

Date First Published:
07 Oct 2014

Date Last Updated:
07 Oct 2014

Document Revision:
11

FeedbackIf you have feedback, comments, or additional information about this vulnerability, please send us email.

Leave a Reply