Vulnerability Note VU#204988

Kaseya's agent driver contains NULL pointer dereference

Original Release date: 14 Jul 2014 | Last revised: 28 Jul 2014

Overview

Kaseya's agent driver, kapfa.sys, is vulnerable to a NULL pointer dereference.

Description

CWE-476: NULL Pointer Dereference

Kaseya's agent driver, kapfa.sys, is vulnerable to a NULL pointer dereference.

Impact

A local authenticated attacker may be able to cause a denial-of-service condition or achieve code execution with the privileges of the Windows kernel.

Solution

Kaseya has released patches with the following instructions:

    "For VSA Version 7.0, install patch 7.0.0.16 and then update your agents to version 7.0.0.3 or higher (Agent-> Upgrade Agent->Update Agent).

    For VSA Version 6.5, install patch 6.5.0.17 and then update your agents to version 6.5.0.2 or higher (Agent-> Upgrade Agent->Update Agent).

    For VSA 6.3 or earlier, it is recommended to upgrade the system to version 6.5 or 7.0."

Vendor Information (Learn More)

VendorStatusDate NotifiedDate Updated
Kaseya, Inc.Affected14 Mar 201429 Apr 2014
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C
Temporal 5.5 E:POC/RL:U/RC:UC
Environmental 1.5 CDP:L/TD:L/CR:L/IR:M/AR:H

References

Credit

Thanks to Bill Finlayson for reporting this vulnerability.

This document was written by Jared Allar.

Other Information

  • CVE IDs: CVE-2014-2926
  • Date Public: 14 Jul 2014
  • Date First Published: 14 Jul 2014
  • Date Last Updated: 28 Jul 2014
  • Document Revision: 26

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.