search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

Cryoserver Security Appliance vulnerable to privilege escalation

Vulnerability Note VU#280844

Original Release Date: 2014-10-07 | Last Revised: 2014-10-07

Overview

Cryoserver Security Appliance 7.3.x vulnerable to privilege escalation

Description

CWE-264: Permissions, Privileges, and Access Controls


Cryoserver Security Appliance 7.3.x does not properly assign permission to the /etc/init.d/cryoserver shell script and allows the default support account to modify it using the /bin/cryo-mgmt script.

Impact

An authenticated attacker may be able to gain root access to the appliance.

Solution

The CERT/CC is currently unaware of a practical solution to this problem.

Vendor Information

280844
 
Expand all

Cryoserver Unknown

Notified:  August 18, 2014 Updated: August 18, 2014

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References


    CVSS Metrics

    Group Score Vector
    Base 7.7 AV:A/AC:L/Au:S/C:C/I:C/A:C
    Temporal 6.6 E:POC/RL:U/RC:UR
    Environmental 4.9 CDP:ND/TD:M/CR:ND/IR:ND/AR:ND

    References

    Acknowledgements

    Thanks to Chris Hernandez for reporting this vulnerability.

    This document was written by Chris King.

    Other Information

    CVE IDs: CVE-2014-4867
    Date Public: 2014-10-07
    Date First Published: 2014-10-07
    Date Last Updated: 2014-10-07 14:00 UTC
    Document Revision: 12

    Sponsored by CISA.

    Download PGP Key

    Read CERT/CC Blog

    Learn about Vulnerability Analysis