Sign-up

ID

VAR-201503-0067


CVE

CVE-2015-0978


TITLE

Telerik Analytics Monitor Library allows DLL hijacking

Trust: 0.8

sources: CERT/CC: VU#794095

DESCRIPTION

Multiple untrusted search path vulnerabilities in (1) EQATEC.Analytics.Monitor.Win32_vc100.dll and (2) EQATEC.Analytics.Monitor.Win32_vc100-x64.dll in Elipse E3 4.5.232 through 4.6.161 allow local users to gain privileges via a Trojan horse DLL in an unspecified directory. NOTE: this may overlap CVE-2015-2264. Telerik Analytics Monitor Library is a third-party application analytics service that collects detailed application metrics for vendors. Some versions of the Telerik library allow DLL hijacking, allowing an attacker to load malicious code in the context of the Telerik-based application. Elipse E3 of (1) EQATEC.Analytics.Monitor.Win32_vc100.dll and (2) EQATEC.Analytics.Monitor.Win32_vc100-x64.dll Contains a vulnerability that allows it to get permission due to a flaw in search path processing. This vulnerability CVE-2015-2264 And may be duplicated. Supplementary information : CWE Vulnerability type by CWE-426: Untrusted Search Path ( Unreliable search path ) Has been identified. http://cwe.mitre.org/data/definitions/426.htmlLocal users can detect Trojans in unspecified directories DLL You may get permission through. Telerik Analytics Monitor Library is prone to multiple local arbitrary code-execution vulnerabilities. A local attacker can leverage these issues to execute arbitrary code with SYSTEM privileges. Failed attempts may lead to denial-of-service condition. Elipse Software E3 is a set of HMI/SCADA platform that provides support for distributed applications, mission-critical applications and control centers from Elipse Software in Brazil

Trust: 2.7

sources: NVD: CVE-2015-0978 // CERT/CC: VU#794095 // JVNDB: JVNDB-2015-001825 // BID: 73030 // VULHUB: VHN-78924

AFFECTED PRODUCTS

vendor:elipsemodel:e3scope:eqversion:4.6

Trust: 1.9

vendor:elipsemodel:e3scope:eqversion:4.5

Trust: 1.6

vendor:elipsemodel: - scope: - version: -

Trust: 0.8

vendor:telerikmodel: - scope: - version: -

Trust: 0.8

vendor:elipsemodel:e3scope:eqversion:4.5.232 to 4.6.161

Trust: 0.8

vendor:telerikmodel:analytics monitor libraryscope:eqversion:3.2.96

Trust: 0.3

vendor:elipsemodel:e3scope:eqversion:4.6.161

Trust: 0.3

vendor:elipsemodel:e3scope:eqversion:4.5.232

Trust: 0.3

vendor:telerikmodel:analytics monitor libraryscope:neversion:3.2.129

Trust: 0.3

vendor:elipsemodel:e3scope:neversion:4.6.162

Trust: 0.3

sources: CERT/CC: VU#794095 // BID: 73030 // JVNDB: JVNDB-2015-001825 // CNNVD: CNNVD-201503-328 // NVD: CVE-2015-0978

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD: CVE-2015-0978
value: MEDIUM

Trust: 1.6

nvd@nist.gov: CVE-2015-0978
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-201503-328
value: MEDIUM

Trust: 0.6

VULHUB: VHN-78924
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-0978
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

NVD: CVE-2015-0978
severity: MEDIUM
baseScore: 6.2
vectorString: NONE
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-78924
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CERT/CC: VU#794095 // VULHUB: VHN-78924 // JVNDB: JVNDB-2015-001825 // CNNVD: CNNVD-201503-328 // NVD: CVE-2015-0978

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

problemtype:CWE-Other

Trust: 0.8

sources: JVNDB: JVNDB-2015-001825 // NVD: CVE-2015-0978

THREAT TYPE

local

Trust: 0.9

sources: BID: 73030 // CNNVD: CNNVD-201503-328

TYPE

Unknown

Trust: 0.3

sources: BID: 73030

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-001825

EXPLOIT AVAILABILITY
sources:
            
            
            CERT/CC: VU#794095

PATCH
title:Downloadsurl:http://www.elipse.com.br/eng/download_e3.aspx
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-001825

EXTERNAL IDS
db:NVDid:CVE-2015-0978
Trust: 2.8
db:ICS CERTid:ICSA-15-069-04A
Trust: 2.5
db:CERT/CCid:VU#794095
Trust: 1.1
db:JVNDBid:JVNDB-2015-001825
Trust: 0.8
db:CNNVDid:CNNVD-201503-328
Trust: 0.7
db:BIDid:73030
Trust: 0.4
db:ICS CERTid:ICSA-15-069-04
Trust: 0.3
db:VULHUBid:VHN-78924
Trust: 0.1
sources:
            
            
            CERT/CC: VU#794095 // 
            
            
            
            VULHUB: VHN-78924 // 
            
            
            
            BID: 73030 // 
            
            
            
            JVNDB: JVNDB-2015-001825 // 
            
            
            
            CNNVD: CNNVD-201503-328 // 
            
            
            
            NVD: CVE-2015-0978

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-15-069-04a
Trust: 2.5
url:http://www.telerik.com/support/whats-new/analytics/release-history/analytics-monitor-library-v3.2.129
Trust: 1.1
url:http://www.telerik.com/support/whats-new/analytics/release-history/analytics-monitor-library-3.2.125
Trust: 0.8
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0978
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0978
Trust: 0.8
url:http://www.elipse.com.br/eng/download_e3.aspx
Trust: 0.3
url:http://www.elipse.com.br
Trust: 0.3
url:http://www.telerik.com/
Trust: 0.3
url:https://ics-cert.us-cert.gov/advisories/icsa-15-069-04
Trust: 0.3
url:http://www.kb.cert.org/vuls/id/794095
Trust: 0.3
sources:
            
            
            CERT/CC: VU#794095 // 
            
            
            
            VULHUB: VHN-78924 // 
            
            
            
            BID: 73030 // 
            
            
            
            JVNDB: JVNDB-2015-001825 // 
            
            
            
            CNNVD: CNNVD-201503-328 // 
            
            
            
            NVD: CVE-2015-0978

CREDITS
Ivan Sanchez of Nullcode.
Trust: 0.3
sources:
            
            
            BID: 73030

SOURCES
db:CERT/CCid:VU#794095
db:VULHUBid:VHN-78924
db:BIDid:73030
db:JVNDBid:JVNDB-2015-001825
db:CNNVDid:CNNVD-201503-328
db:NVDid:CVE-2015-0978

LAST UPDATE DATE
2025-04-13T23:25:19.176000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#794095date:2015-03-13T00:00:00
db:VULHUBid:VHN-78924date:2015-03-16T00:00:00
db:BIDid:73030date:2015-03-10T00:00:00
db:JVNDBid:JVNDB-2015-001825date:2015-03-17T00:00:00
db:CNNVDid:CNNVD-201503-328date:2015-03-16T00:00:00
db:NVDid:CVE-2015-0978date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:CERT/CCid:VU#794095date:2015-03-10T00:00:00
db:VULHUBid:VHN-78924date:2015-03-14T00:00:00
db:BIDid:73030date:2015-03-10T00:00:00
db:JVNDBid:JVNDB-2015-001825date:2015-03-17T00:00:00
db:CNNVDid:CNNVD-201503-328date:2015-03-16T00:00:00
db:NVDid:CVE-2015-0978date:2015-03-14T01:59:10.860