Results 1 to 2 of 2
  1. #1
    Join Date
    Mar 2003
    Location
    California USA
    Posts
    13,290

    Idera Server Backup Manager (R1Soft) - Arbitrary File Overwrite (R911-0071)

    Type: Arbitrary File Overwrite
    Location: Local
    Impact: High
    Product: Idera Server Backup Manager (R1Soft)
    Website: http://www.idera.com
    Vulnerable Version: 5.4.1 build 39
    Fixed Version: 5.4.2 build 71
    CVE:
    R911: 0071
    Date: 2013-10-08
    By: Rack911
    Product Description:

    Idera Server Backup Manager is an affordable, high-performance, disk-to-disk backup software for Linux and Windows servers. (This software was previously more commonly known as R1Soft Backup.)

    Vulnerability Description:

    It is possible for an attacker to overwrite any file on the server regardless of ownership by providing a malicious restore directory via the Send to Agent feature.

    Proof of Concept:

    Due to the nature of this security flaw, we will not be posting a Proof of Concept until a much later date.

    Impact:

    We have deemed this vulnerability to be rated as HIGH due to the fact that any file can be overwritten which could ultimately render a server inoperable.

    Vulnerable Version:

    This vulnerability was tested against Idera Server Backup Manager (R1Soft) v5.4.1 build 39 and is believed to exist in previous versions.

    Fixed Version:

    This vulnerability was patched in Idera Server Backup Manager (R1Soft) v5.4.2 build 71.

    Vendor Contact Timeline:

    2013-09-12: Vendor contacted via email.
    2013-09-12: Vendor confirms vulnerability.
    2013-10-08: Vendor issues update.
    2013-10-08: Rack911 issues security advisory.
    Steven Ciaburri | Industry's Best Server Management - Rack911.com
    Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
    Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
    FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance

  2. #2
    Join Date
    Mar 2003
    Location
    Canada
    Posts
    8,910
    Patrick William | RACK911 Labs | Software Security Auditing
    400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com

    www.HostingSecList.com - Security notices for the hosting community.

Similar Threads

  1. DirectAdmin - Arbitrary File Access Vulnerability (R911-0077)
    By Patrick in forum Hosting Security and Technology
    Replies: 1
    Last Post: 10-07-2013, 10:28 AM
  2. DirectAdmin - Arbitrary File Overwrite Vulnerability (R911-0076)
    By Patrick in forum Hosting Security and Technology
    Replies: 1
    Last Post: 10-07-2013, 10:28 AM
  3. DirectAdmin - Arbitrary File Overwrite Vulnerability (R911-0075)
    By Patrick in forum Hosting Security and Technology
    Replies: 1
    Last Post: 10-07-2013, 10:27 AM
  4. WHMreseller - Arbitrary File Access Vulnerability (R911-0065)
    By Steven in forum Hosting Security and Technology
    Replies: 1
    Last Post: 09-11-2013, 12:37 PM
  5. RVSiteBuilder - Arbitrary File Overwrite Vulnerability (R911-0061)
    By Patrick in forum Hosting Security and Technology
    Replies: 0
    Last Post: 09-03-2013, 09:29 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •