Vulnerability Note VU#121036
BMC Track-It! contains multiple vulnerabilities
BMC Track-It! version 18.104.22.1685 contains multiple vulnerabilities
CWE-306: Missing Authentication for Critical Function - CVE-2014-4872
BMC Track-It! exposes several dangerous remote .NET services on port 9010 without authentication. .NET remoting allows a user to invoke methods remotely and retrieve their result. The exposed service FileStorageService allows for arbitrary file upload and code execution. The exposed service ConfigurationService allows for retrieval of configuration files which contain both application and domain credentials.
The CVSS score reflects CVE-2014-4872.
A remote unauthenticated attacker may be able to upload and download arbitrary files and execute arbitrary code.
Apply an Update
Use a Firewall
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|BMC Software||Affected||21 Aug 2014||27 Oct 2014|
CVSS Metrics (Learn More)
Thanks to Pedro Ribeiro (email@example.com) from Agile Information Security for reporting this vulnerability.
This document was written by Chris King.
- CVE IDs: CVE-2014-4872 CVE-2014-4873 CVE-2014-4874
- Date Public: 07 Oct 2014
- Date First Published: 07 Oct 2014
- Date Last Updated: 27 Oct 2014
- Document Revision: 20
If you have feedback, comments, or additional information about this vulnerability, please send us email.