DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't…
mitre·CWE-346·Published 2021-02-12
DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a malicious user. The vulnerability is triggered when a remote attacker crafts an HTML page (e.g., with "OBJECT classid=" and "<SCRIPT language='vbscript'>") to overwrite arbitrary files.
DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a malicious user. The vulnerability is triggered when a remote attacker crafts an HTML page (e.g., with "OBJECT classid=" and "<SCRIPT language='vbscript'>") to overwrite arbitrary files.
DSUtility.dll en Pelco Digital Sentry Server versiones anteriores a 7.19.67, presenta una vulnerabilidad de escritura de archivo arbitraria. El método AppendToTextFile no comprueba si se llama desde la aplicación o desde un usuario malicioso. La vulnerabilidad es activada cuando un atacante remoto crea una página HTML (por ejemplo, con "OBJECT classid=" and "(SCRIPT language='vbscript')") para sobrescribir archivos arbitrarios
| Version | Type | Source | Base | Exp | Impact | Vector |
|---|---|---|---|---|---|---|
| 2.0 | Primary | NVD | 8.8 | 8.6 | 9.2 | AV:N/AC:M/Au:N/C:N/I:C/A:C |
| 3.1 | Primary | NVD | 8.1 | 2.8 | 5.2 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H |