search menu icon-carat-right cmu-wordmark

CERT Coordination Center

Dell KACE K2000 Appliance contains backdoor administrator account

Vulnerability Note VU#135606

Original Release Date: 2011-11-08 | Last Revised: 2015-09-30

Overview

The Dell KACE K2000 System Deployment Appliance contains a hidden administrator account that could allow a remote attacker to take control of an affected device.

Description

The Dell KACE K2000 Deployment Appliance is an integrated systems provisioning product for large-scale operating systems deployment. Some versions of the product contain a backdoor administrator account with a fixed password, accessible via the administrative web interface of the device. Furthermore, the backdoor account is not visible from, and cannot be removed via the appliance's administrative web interface.

Impact

A remote attacker could login to an affected device with administrative privileges. Secondary impacts include: the ability to make configuration changes, modification of existing deployment/recovery images, access to sensitive information, and the ability to mount further attacks (e.g., execute arbitrary commands with elevated privileges).

Solution

Apply an update

The Dell KACE K2000 Deployment Appliance version 3.7 removed this hidden administrator account. Affected users are encouraged to update as soon as possible to version 3.7 or later.

Vendor Information

135606
 
Affected   Unknown   Unaffected

Dell Computer Corporation, Inc.

Notified:  June 08, 2011 Updated:  November 08, 2011

Statement Date:   November 04, 2011

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References


CVSS Metrics

Group Score Vector
Base 0.0 AV:--/AC:--/Au:--/C:--/I:--/A:--
Temporal 0.0 E:ND/RL:ND/RC:ND
Environmental 0 CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND

References

Acknowledgements

Thanks to Tenable Network Security for reporting this vulnerability.

This document was written by Chad Dougherty.

Other Information

CVE IDs: CVE-2011-4046
Severity Metric: 33.84
Date Public: 2011-11-03
Date First Published: 2011-11-08
Date Last Updated: 2015-09-30 20:07 UTC
Document Revision: 25

Sponsored by the Department of Homeland Security Office of Cybersecurity and Communications.