A vulnerability has been found in Quest DR Series Disk Backup up to 4.0.3.0 (Backup Software) and classified as critical. This vulnerability affects an unknown code. The manipulation with an unknown input leads to a command injection vulnerability. The CWE definition for the vulnerability is CWE-77. The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 22 of 46).

The bug was discovered 05/31/2018. The weakness was published 06/02/2018 as not defined mailinglist post (Full-Disclosure). The advisory is available at seclists.org. This vulnerability was named CVE-2018-11164 since 05/16/2018. The exploitation appears to be easy. The attack can be initiated remotely. A single authentication is needed for exploitation. The technical details are unknown and an exploit is not available. This vulnerability is assigned to T1202 by the MITRE ATT&CK project.

The vulnerability was handled as a non-public zero-day exploit for at least 1 days. During that time the estimated underground price was around $0-$5k.

Upgrading to version 4.0.3.1 eliminates this vulnerability.

Similar entries are available at 118549, 118550, 118551 and 118552.

Productinfo

Type

• Backup Software

Vendor

• Quest

Name

• DR Series Disk Backup

Version

• 4.0.0
• 4.0.1
• 4.0.2
• 4.0.3

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion