Today I published an advisory for the BitDefender Update Server. BitDefender is one of the larger vendors for Antivirus software.
The update servers function is to deliver new Antivirus patterns and engine updates to the software clients. Therefore it is using the http protocol and a http daemon. The daemon does not require authentication and is vulnerable to the oldest vulnerability known for webservers: The directory traversal attack.
This means everyone who is able to connect to the port of the Update Server with his webbrowser, is able to read all files on the server (at least on the same partition/drive), including Windows configuration files, password files etc., etc.
It also seems, that BitDefender does not have a dedicated response team, responsible for vulnerabilities within their own products. The mail I send to them, in order to inform them about their vulnerability was responded by an automated mail, requesting me to register on their website in order to access their support material…… sorry guys, i dont have time for such games…. please learn how other AV- and Softwarevendors are handling this!!!
You can find the original advisory here.
More of my humble advisories can be found on my website….
Toter Link.
Bitte um Berichtigung, will ihn/es ja lesen.
Muss das erstmal hochladen… bin nicht so gut am computer, daher dauert das etwas länger.
Aber die Zusammenfassung ist die: Lade dir irgendeine Enterprise Software von Bitdefender runter, installiere Sie, aktiviere den Update Server und mache dann ein: echo -e “GET /../../boot.ini HTTP/1.0\r\n\r\n” | nc host port
PS: Ich versuche mal im laufe des WE das advisory hochzuladen!
torrent UMPlayer…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
minecraft for free…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents WebcamMax…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents Internet Download Manager…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent download WinZip…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent Easeus Partition Master Home Edition…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent download GOM Media Player…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents cracked Free CUDA Video Converter…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent download UMPlayer…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent KMPlayer…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents cracked KMPlayer…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents Skype…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents Advanced SystemCare…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents Avast Free Antivirus…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrents RealPlayer…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent Start Menu 8…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
torrent Total Video Converter…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
lawrence crane enterprises…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…
video=xmrr8o…
BitDefender – Unauthorized Remote File Access Vulnerability « Olivers Blog…