A vulnerability has been found in Seagate BlackArmor NAS (the affected version is unknown) and classified as critical. This vulnerability affects some unknown processing of the file localhost/backupmgt/localJob.php. The manipulation of the argument auth_name as part of a Parameter leads to a input validation vulnerability. The CWE definition for the vulnerability is CWE-20. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. As an impact it is known to affect confidentiality, integrity, and availability.

The bug was discovered 05/03/2014. The weakness was presented 02/23/2018 as EDB-ID 33159 as not defined exploit (Exploit-DB). The advisory is shared for download at exploit-db.com. This vulnerability was named CVE-2014-3206 since 05/03/2014. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Technical details and also a public exploit are known.

After immediately, there has been an exploit disclosed. It is possible to download the exploit at exploit-db.com. It is declared as proof-of-concept. The vulnerability was handled as a non-public zero-day exploit for at least 1392 days. During that time the estimated underground price was around $0-$5k. By approaching the search of inurl:localhost/backupmgt/localJob.php it is possible to find vulnerable targets with Google Hacking.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The vulnerability is also documented in the vulnerability database at Exploit-DB (33159). See 113727 for similar entry.

Productinfo

Vendor

• Seagate

Name

• BlackArmor NAS

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion