Vulnerability Note VU#820196
Furuno Voyage Data Recorder (VDR) moduleserv firmware update utility fails to properly sanitize user-provided input
Furuno Voyage Data Recorder (VDR) VR-3000/VR-3000S and VR-7000 moduleserv firmware update utility fails to properly sanitize user-provided input and is vulnerable to arbitrary command execution with root privileges.
According to the Furuno VDR product page, the VDR "records all crucial data to identify the cause of maritime casualty as well as contribute to the future prevention of the catastrophe of any kind."
Multiple versions of Furuno VDR VR-3000/VR-3000S and VR-7000 contain a firmware update utility called moduleserv that listens on TCP port 10110. The moduleserv service fails to properly sanitize user-provided input, which an unauthenticated attacker may leverage to execute arbitrary commands with root privileges. For more information, refer to the blog post by IOActive.
An unauthenticated attacker with network access to affected devices can execute arbitrary commands with root privileges.
Apply an update
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Furuno||Affected||-||22 Dec 2015|
CVSS Metrics (Learn More)
Thanks to Ruben Santamarta of IOActive for reporting this vulnerability. Thanks to JPCERT/CC for coordinating with the vendor.
This document was written by Joel Land.
- CVE IDs: Unknown
- Date Public: 04 Jan 2015
- Date First Published: 04 Jan 2016
- Date Last Updated: 04 Jan 2016
- Document Revision: 24
If you have feedback, comments, or additional information about this vulnerability, please send us email.