BMC Track-It! version 22.214.171.1245 contains multiple vulnerabilities
CWE-306: Missing Authentication for Critical Function - CVE-2014-4872
BMC Track-It! exposes several dangerous remote .NET services on port 9010 without authentication. .NET remoting allows a user to invoke methods remotely and retrieve their result. The exposed service FileStorageService allows for arbitrary file upload and code execution. The exposed service ConfigurationService allows for retrieval of configuration files which contain both application and domain credentials.
The CVSS score reflects CVE-2014-4872.
A remote unauthenticated attacker may be able to upload and download arbitrary files and execute arbitrary code.
Apply an Update
Use a Firewall
Thanks to Pedro Ribeiro (email@example.com) from Agile Information Security for reporting this vulnerability.
This document was written by Chris King.