A vulnerability has been found in DocuTrac QuicDoc and Office Therapy up to 1.6.4.0 and classified as critical. Affected by this vulnerability is an unknown code block of the file DTISQLInstaller.exe. The manipulation with an unknown input leads to a hard-coded credentials vulnerability. The CWE definition for the vulnerability is CWE-798. The product contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:

Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4.0 and prior contain three credentials with known passwords: QDMaster, OTMaster, and sa.

The bug was discovered 03/14/2018. The weakness was presented 03/19/2018 (Website). It is possible to read the advisory at blog.rapid7.com. This vulnerability is known as CVE-2018-5551 since 01/12/2018. The exploitation appears to be easy. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Technical details of the vulnerability are known, but there is no available exploit. The attack technique deployed by this issue is T1110.001 according to MITRE ATT&CK.

The vulnerability was handled as a non-public zero-day exploit for at least 5 days. During that time the estimated underground price was around $0-$5k.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

See 114764 for similar entry.

Productinfo

Vendor

• DocuTrac

Name

• Office Therapy
• QuicDoc

Version

• 1.6.0
• 1.6.1
• 1.6.2
• 1.6.3
• 1.6.4

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion