Sign-up

ID

VAR-201708-1062


CVE

CVE-2017-11157


TITLE

Synology Cloud Station Backup Vulnerabilities related to untrusted search paths

Trust: 0.8

sources: JVNDB: JVNDB-2017-007565

DESCRIPTION

Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Backup before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory. Synology Cloud Station Backup Contains an unreliable search path vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Synology Cloud Station Backup for Windows is a Windows-based application from Synology that can be used to back up computer data. (Malicious files include: (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll, or (4) dwmapi.dll)

Trust: 1.71

sources: NVD: CVE-2017-11157 // JVNDB: JVNDB-2017-007565 // VULHUB: VHN-101551

AFFECTED PRODUCTS

vendor:synologymodel:cloud station backupscope:lteversion:4.2.4-4393

Trust: 1.0

vendor:synologymodel:cloud station backupscope:ltversion:4.2.5-4396

Trust: 0.8

vendor:synologymodel:cloud station backupscope:eqversion:4.2.4-4393

Trust: 0.6

sources: JVNDB: JVNDB-2017-007565 // CNNVD: CNNVD-201707-376 // NVD: CVE-2017-11157

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-11157
value: HIGH

Trust: 1.0

NVD: CVE-2017-11157
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201707-376
value: MEDIUM

Trust: 0.6

VULHUB: VHN-101551
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-11157
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-101551
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-11157
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-101551 // JVNDB: JVNDB-2017-007565 // CNNVD: CNNVD-201707-376 // NVD: CVE-2017-11157

PROBLEMTYPE DATA

problemtype:CWE-426

Trust: 1.9

sources: VULHUB: VHN-101551 // JVNDB: JVNDB-2017-007565 // NVD: CVE-2017-11157

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201707-376

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201707-376

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-007565

PATCH
title:Synology-SA-17:50 Cloud Station Backupurl:https://www.synology.com/en-global/support/security/Synology_SA_17_50_Cloud_Station_Backup
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2017-007565

EXTERNAL IDS
db:NVDid:CVE-2017-11157
Trust: 2.5
db:JVNDBid:JVNDB-2017-007565
Trust: 0.8
db:CNNVDid:CNNVD-201707-376
Trust: 0.7
db:VULHUBid:VHN-101551
Trust: 0.1
sources:
            
            
            VULHUB: VHN-101551 // 
            
            
            
            JVNDB: JVNDB-2017-007565 // 
            
            
            
            CNNVD: CNNVD-201707-376 // 
            
            
            
            NVD: CVE-2017-11157

REFERENCES
url:https://www.synology.com/en-global/support/security/synology_sa_17_50_cloud_station_backup
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-11157
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-11157
Trust: 0.8
sources:
            
            
            VULHUB: VHN-101551 // 
            
            
            
            JVNDB: JVNDB-2017-007565 // 
            
            
            
            CNNVD: CNNVD-201707-376 // 
            
            
            
            NVD: CVE-2017-11157

SOURCES
db:VULHUBid:VHN-101551
db:JVNDBid:JVNDB-2017-007565
db:CNNVDid:CNNVD-201707-376
db:NVDid:CVE-2017-11157

LAST UPDATE DATE
2025-04-20T23:36:48.045000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-101551date:2017-09-05T00:00:00
db:JVNDBid:JVNDB-2017-007565date:2017-09-25T00:00:00
db:CNNVDid:CNNVD-201707-376date:2017-08-31T00:00:00
db:NVDid:CVE-2017-11157date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:VULHUBid:VHN-101551date:2017-08-30T00:00:00
db:JVNDBid:JVNDB-2017-007565date:2017-09-25T00:00:00
db:CNNVDid:CNNVD-201707-376date:2017-07-11T00:00:00
db:NVDid:CVE-2017-11157date:2017-08-30T20:29:00.257