OSVDB ID: 79276

Title: Lenovo ThinkManagement Console landesk/managementsuite/core/core.anonymous/ServerSetup.asmx RunAMTCommand Operation -PutUpdateFileCore Command Parsing Arbitrary File Upload

Info

Disclosure

Feb 16, 2012

Discovery

Unknown

Dates

Exploit

Mar 19, 2012

Solution

Unknown

Description

The Lenovo ThinkManagement Console contains a flaw related to the ServerSetup web service. The issue is due to the service allowing unauthenticated access to various SOAP-based operations. By issuing a '-PutUpdateFileCore' command in a 'RunAMTCommand' operation, a remote attacker can upload arbitrary files.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: Third-party Verified, Uncoordinated Disclosure
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, it has been reported that the vendor has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section. It has not been confirmed that this addresses the problem, as the vendor advisory was submitted via an anonymous comment, and requires authentication.

Products

LANDesk Software

Lenovo ThinkManagement Console

9.0.3

References

Credit

Unknown or Incomplete



Direct URL: http://osvdb.org/79276