ID
VAR-201305-0366
TITLE
Fujitsu Desktop Update Permission Elevation Vulnerability
Trust: 0.6
DESCRIPTION
Fujitsu is an ICT integrated service provider that provides industry solutions for the global market. There is a privilege elevation vulnerability in Fujitsu Desktop Update that allows malicious programs to execute in the context of the current user. The application is registered as control panel item via [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{070B64FF-795D-4DAA-88AD-6D3277C7E445}] @="Fujitsu DeskUpdate" The "shell object" with GUID {070B64FF-795D-4DAA-88AD-6D3277C7E445} is registered with [HKLM\SOFTWARE\Classes\CLSID\{070B64FF-795D-4DAA-88AD-6D3277C7E445}] @="Fujitsu DeskUpdate" "InfoTip"=expand:"@C:\\Program Files (x86)\\Fujitsu\\DeskUpdate\\DeskUpdate.exe,-132" "System.ControlPanel.Category"=dword:00000005 "System.Software.TasksFileUrl"="C:\\Program Files (x86)\\Fujitsu\DeskUpdate\\duconfig.xml" [HKLM\SOFTWARE\Classes\CLSID\{070B64FF-795D-4DAA-88AD-6D3277C7E445}\DefaultIcon] @=expand:"C:\\Program Files (x86)\\Fujitsu\\DeskUpdate\\DeskUpdate.exe,-0" [HKLM\SOFTWARE\Classes\CLSID\{070B64FF-795D-4DAA-88AD-6D3277C7E445}\Shell\Open\Command] @="C:\\Program Files (x86)\\Fujitsu\\DeskUpdate\\DeskUpdate.exe" The last entry is a pathname with unquoted spaces and allows the execution of the rogue programs "C:\Program.exe" and/or "C:\Program Files.exe", as documented in <http://msdn.microsoft.com/library/ms682425.aspx> Stefan Kanthak PS: long pathnames containing spaces exist for about 20 years now in Windows, EVERY developer should know how to use them properly, and EVERY QA should check their proper use!
Trust: 0.81
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.8 |
AFFECTED PRODUCTS
| vendor: | fujitsu | model: | desktop update | scope: | - | version: | - | Trust: 0.6 |
| vendor: | fujitsu | model: | - | scope: | eq | version: | * | Trust: 0.2 |
| vendor: | fujitsu | model: | desktop update | scope: | eq | version: | * | Trust: 0.2 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
TYPE
Permission permission and access control
Trust: 0.2
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2013-05069 | Trust: 0.8 |
| db: | PACKETSTORM | id: | 121567 | Trust: 0.7 |
| db: | IVD | id: | FBAE11A4-1F25-11E6-ABEF-000C29C66E3D | Trust: 0.2 |
REFERENCES
| url: | http://packetstormsecurity.com/files/121567/fujitsu-desktop-update-privilege-escalation.html | Trust: 0.6 |
| url: | http://support.ts.fujitsu.com/deskupdate/index.asp>), | Trust: 0.1 |
| url: | http://msdn.microsoft.com/library/ms682425.aspx> | Trust: 0.1 |
CREDITS
Stefan Kanthak
Trust: 0.1
SOURCES
| db: | IVD | id: | fbae11a4-1f25-11e6-abef-000c29c66e3d |
| db: | CNVD | id: | CNVD-2013-05069 |
| db: | PACKETSTORM | id: | 121567 |
LAST UPDATE DATE
2022-05-17T01:37:06.613000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2013-05069 | date: | 2013-05-10T00:00:00 |
SOURCES RELEASE DATE
| db: | IVD | id: | fbae11a4-1f25-11e6-abef-000c29c66e3d | date: | 2013-05-10T00:00:00 |
| db: | CNVD | id: | CNVD-2013-05069 | date: | 2013-05-10T00:00:00 |
| db: | PACKETSTORM | id: | 121567 | date: | 2013-05-08T22:22:22 |