A vulnerability has been found in Crestron AM-100 and AM-101 and classified as problematic. This vulnerability affects an unknown part of the component Service Port 389. The manipulation with an unknown input leads to a input validation vulnerability. The CWE definition for the vulnerability is CWE-20. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. As an impact it is known to affect availability. CVE summarizes:

Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 is vulnerable to denial of service via a crafted request to TCP port 389. The request will force the slideshow to transition into a "stopped" state. A remote, unauthenticated attacker can use this vulnerability to stop an active slideshow.

The bug was discovered 05/01/2019. The weakness was shared 04/30/2019. This vulnerability was named CVE-2019-3936 since 01/03/2019. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. There are neither technical details nor an exploit publicly available.

The commercial vulnerability scanner Qualys is able to test this issue with plugin 13484 (Crestron AM-100 and AM-101 Multiple Vulnerabilities).

Proper firewalling of tcp/389 is able to address this issue.

The entries 134273, 134274, 134275 and 134276 are related to this item.

Affected

• Crestron AM-100 1.6.0.2
• Crestron AM-101 2.7.0.2

Productinfo

Vendor

• Crestron

Name

• AM-100
• AM-101

License

• commercial

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion