Sign-up

ID

VAR-201111-0228


CVE

CVE-2011-4047


TITLE

Dell KACE K2000 Appliance database administration account allows arbitrary command execution

Trust: 0.8

sources: CERT/CC: VU#589089

DESCRIPTION

The Dell KACE K2000 System Deployment Appliance allows remote attackers to execute arbitrary commands by leveraging database write access. Dell Provided by KACE K2000 System Deployment Appliance Contains a command injection vulnerability. Dell Provided by KACE K2000 System Deployment Appliance In the database function of, there is an administrator account that can log in with a known user name and a password that can be identified, and there is a command injection vulnerability. Note that this vulnerability is affected only when the database function is configured to allow remote access. This setting is disabled by default, JVNVU#135606 This setting may be enabled by using vulnerabilities such as.By a remote third party, root An arbitrary program may be executed with authority. Other attacks may also be possible. ---------------------------------------------------------------------- Ovum says ad hoc tools are out-dated. The best practice approach? Fast vulnerability intelligence, threat handling, and setup in one tool. Read the new report on the Secunia VIM: http://secunia.com/products/corporate/vim/ovum_2011_request/ ---------------------------------------------------------------------- TITLE: Dell KACE K2000 System Deployment Appliance Security Bypass and Cross-Site Scripting SECUNIA ADVISORY ID: SA46796 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/46796/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=46796 RELEASE DATE: 2011-11-09 DISCUSS ADVISORY: http://secunia.com/advisories/46796/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/46796/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=46796 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: A security issue and some vulnerabilities have been reported in Dell KACE K2000 System Deployment Appliance, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks. 2) Certain unspecified input is not properly sanitised before being returned to the user. SOLUTION: Restrict access to trusted hosts only. Filter malicious characters and character sequences using a proxy. PROVIDED AND/OR DISCOVERED BY: US-CERT credits Tenable Network Security. ORIGINAL ADVISORY: KACE: http://www.kace.com/support/kb/index.php?action=artikel&id=1120 US-CERT (VU#135606, VU#193529): http://www.kb.cert.org/vuls/id/135606 http://www.kb.cert.org/vuls/id/193529 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 4.95

sources: NVD: CVE-2011-4047 // CERT/CC: VU#589089 // CERT/CC: VU#193529 // CERT/CC: VU#702169 // CERT/CC: VU#135606 // JVNDB: JVNDB-2011-003060 // BID: 50605 // VULHUB: VHN-51992 // PACKETSTORM: 106805

AFFECTED PRODUCTS

vendor:dell computermodel: - scope: - version: -

Trust: 3.2

vendor:dellmodel:kace k2000 systems deployment appliancescope: - version: -

Trust: 1.4

vendor:dellmodel:kace k2000 systems deployment appliancescope:eqversion:*

Trust: 1.0

vendor:dellmodel:kace k2000scope:eqversion:0

Trust: 0.3

sources: CERT/CC: VU#589089 // CERT/CC: VU#193529 // CERT/CC: VU#702169 // CERT/CC: VU#135606 // BID: 50605 // JVNDB: JVNDB-2011-003060 // CNNVD: CNNVD-201111-243 // NVD: CVE-2011-4047

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-4047
value: HIGH

Trust: 1.0

CARNEGIE MELLON: VU#589089
value: 6.48

Trust: 0.8

CARNEGIE MELLON: VU#193529
value: 0.75

Trust: 0.8

CARNEGIE MELLON: VU#702169
value: 5.40

Trust: 0.8

CARNEGIE MELLON: VU#135606
value: 33.84

Trust: 0.8

NVD: CVE-2011-4047
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201111-243
value: CRITICAL

Trust: 0.6

VULHUB: VHN-51992
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2011-4047
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-51992
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CERT/CC: VU#589089 // CERT/CC: VU#193529 // CERT/CC: VU#702169 // CERT/CC: VU#135606 // VULHUB: VHN-51992 // JVNDB: JVNDB-2011-003060 // CNNVD: CNNVD-201111-243 // NVD: CVE-2011-4047

PROBLEMTYPE DATA

problemtype:CWE-94

Trust: 1.9

sources: VULHUB: VHN-51992 // JVNDB: JVNDB-2011-003060 // NVD: CVE-2011-4047

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201111-243

TYPE

code injection

Trust: 0.6

sources: CNNVD: CNNVD-201111-243

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2011-003060

PATCH
title:K2000 Appliance Security Recommended Practicesurl:http://www.kace.com/support/kb/index.php?action=artikel&id=1120
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2011-003060

EXTERNAL IDS
db:CERT/CCid:VU#589089
Trust: 3.6
db:NVDid:CVE-2011-4047
Trust: 2.8
db:CERT/CCid:VU#193529
Trust: 1.2
db:CERT/CCid:VU#135606
Trust: 1.2
db:CERT/CCid:VU#702169
Trust: 1.1
db:JVNDBid:JVNDB-2011-003060
Trust: 0.8
db:CNNVDid:CNNVD-201111-243
Trust: 0.7
db:BIDid:50605
Trust: 0.3
db:SECUNIAid:46796
Trust: 0.2
db:VULHUBid:VHN-51992
Trust: 0.1
db:PACKETSTORMid:106805
Trust: 0.1
sources:
            
            
            CERT/CC: VU#589089 // 
            
            
            
            CERT/CC: VU#193529 // 
            
            
            
            CERT/CC: VU#702169 // 
            
            
            
            CERT/CC: VU#135606 // 
            
            
            
            VULHUB: VHN-51992 // 
            
            
            
            BID: 50605 // 
            
            
            
            JVNDB: JVNDB-2011-003060 // 
            
            
            
            PACKETSTORM: 106805 // 
            
            
            
            CNNVD: CNNVD-201111-243 // 
            
            
            
            NVD: CVE-2011-4047

REFERENCES
url:http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en
Trust: 4.8
url:about vulnerability notes
Trust: 3.2
url:contact us about this vulnerability
Trust: 3.2
url:provide a vendor statement
Trust: 3.2
url:http://www.kb.cert.org/vuls/id/589089
Trust: 2.8
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-4047
Trust: 0.8
url:http://jvn.jp/cert/jvnvu589089
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-4047
Trust: 0.8
url:http://www.kb.cert.org/vuls/id/135606
Trust: 0.4
url:http://www.kb.cert.org/vuls/id/193529
Trust: 0.4
url:http://dell.com
Trust: 0.3
url:http://www.kb.cert.org/vuls/id/702169
Trust: 0.3
url:http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en
Trust: 0.1
url:http://secunia.com/advisories/46796/#comments
Trust: 0.1
url:https://ca.secunia.com/?page=viewadvisory&vuln_id=46796
Trust: 0.1
url:http://secunia.com/vulnerability_intelligence/
Trust: 0.1
url:http://secunia.com/advisories/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
Trust: 0.1
url:http://secunia.com/vulnerability_scanning/personal/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/advisories/46796/
Trust: 0.1
url:http://www.kace.com/support/kb/index.php?action=artikel&id=1120
Trust: 0.1
url:http://secunia.com/products/corporate/vim/ovum_2011_request/
Trust: 0.1
url:http://secunia.com/advisories/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            CERT/CC: VU#589089 // 
            
            
            
            CERT/CC: VU#193529 // 
            
            
            
            CERT/CC: VU#702169 // 
            
            
            
            CERT/CC: VU#135606 // 
            
            
            
            VULHUB: VHN-51992 // 
            
            
            
            BID: 50605 // 
            
            
            
            JVNDB: JVNDB-2011-003060 // 
            
            
            
            PACKETSTORM: 106805 // 
            
            
            
            CNNVD: CNNVD-201111-243 // 
            
            
            
            NVD: CVE-2011-4047

CREDITS
Tenable Network Security
Trust: 0.3
sources:
            
            
            BID: 50605

SOURCES
db:CERT/CCid:VU#589089
db:CERT/CCid:VU#193529
db:CERT/CCid:VU#702169
db:CERT/CCid:VU#135606
db:VULHUBid:VHN-51992
db:BIDid:50605
db:JVNDBid:JVNDB-2011-003060
db:PACKETSTORMid:106805
db:CNNVDid:CNNVD-201111-243
db:NVDid:CVE-2011-4047

LAST UPDATE DATE
2025-04-11T23:08:52.918000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#589089date:2011-11-08T00:00:00
db:CERT/CCid:VU#193529date:2011-11-08T00:00:00
db:CERT/CCid:VU#702169date:2015-09-30T00:00:00
db:CERT/CCid:VU#135606date:2015-09-30T00:00:00
db:VULHUBid:VHN-51992date:2011-11-14T00:00:00
db:BIDid:50605date:2011-11-08T00:00:00
db:JVNDBid:JVNDB-2011-003060date:2011-11-28T00:00:00
db:CNNVDid:CNNVD-201111-243date:2011-11-14T00:00:00
db:NVDid:CVE-2011-4047date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:CERT/CCid:VU#589089date:2011-11-08T00:00:00
db:CERT/CCid:VU#193529date:2011-11-08T00:00:00
db:CERT/CCid:VU#702169date:2011-11-08T00:00:00
db:CERT/CCid:VU#135606date:2011-11-08T00:00:00
db:VULHUBid:VHN-51992date:2011-11-12T00:00:00
db:BIDid:50605date:2011-11-08T00:00:00
db:JVNDBid:JVNDB-2011-003060date:2011-11-28T00:00:00
db:PACKETSTORMid:106805date:2011-11-09T06:29:15
db:CNNVDid:CNNVD-201111-243date:2011-11-14T00:00:00
db:NVDid:CVE-2011-4047date:2011-11-12T00:55:01.113