Samsung SyncThru 6 prior 1.0 upload/updateDriver Parameter path traversal
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.8 | $0-$5k | 0.00 |
A vulnerability was found in Samsung SyncThru 6. It has been classified as critical. Affected is an unknown functionality of the file upload/updateDriver. The manipulation as part of a Parameter leads to a path traversal vulnerability. CWE is classifying the issue as CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. This is going to have an impact on integrity, and availability. CVE summarizes:
Multiple directory traversal vulnerabilities in Samsung SyncThru 6 before 1.0 allow remote attackers to delete arbitrary files via unspecified parameters to (1) upload/updateDriver or (2) upload/addDriver or to execute arbitrary code with SYSTEM privileges via unspecified parameters to (3) uploadCloning.html, (4) fileupload.html, (5) uploadFirmware.html, or (6) upload/driver.
The bug was discovered 07/13/2015. The weakness was released 06/01/2017 by Andrea Micalizzi (rgod) (Website). The advisory is available at securityfocus.com. This vulnerability is traded as CVE-2015-5473. The exploitability is told to be easy. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details are known, but there is no available exploit. This vulnerability is assigned to T1006 by the MITRE ATT&CK project.
The vulnerability was handled as a non-public zero-day exploit for at least 689 days. During that time the estimated underground price was around $0-$5k.
Upgrading to version 1.0 eliminates this vulnerability.
Product
Vendor
Name
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB CVSS-B Score: 🔍VulDB CVSS-BT Score: 🔍
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 8.1VulDB Meta Temp Score: 8.0
VulDB Base Score: 6.5
VulDB Temp Score: 6.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 9.8
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Path traversalCWE: CWE-22
ATT&CK: T1006
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: SyncThru 6 1.0
Timeline
07/10/2015 🔍07/13/2015 🔍
07/13/2015 🔍
06/01/2017 🔍
06/01/2017 🔍
06/01/2017 🔍
10/13/2019 🔍
Sources
Vendor: samsung.comAdvisory: securityfocus.com⛔
Researcher: Andrea Micalizzi (rgod)
Status: Not defined
CVE: CVE-2015-5473 (🔍)
SecurityFocus: 75912 - Samsung SyncThru CVE-2015-5473 Multiple Directory Traversal Vulnerabilities
Entry
Created: 06/01/2017 23:39Updated: 10/13/2019 09:34
Changes: 06/01/2017 23:39 (64), 10/13/2019 09:34 (2)
Complete: 🔍
No comments yet. Languages: en.
Please log in to comment.