CVE-2015-5473 - OpenCVE

Multiple directory traversal vulnerabilities in Samsung SyncThru 6 before 1.0 allow remote attackers to delete arbitrary files via unspecified parameters to (1) upload/updateDriver or (2) upload/addDriver or to execute arbitrary code with SYSTEM privileges via unspecified parameters to (3) uploadCloning.html, (4) fileupload.html, (5) uploadFirmware.html, or (6) upload/driver.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Samsung	Syncthru 6

Configuration 1 [-]

cpe:2.3:a:samsung:syncthru_6:*:*:*:*:*:*:*:*

References

Link	Resource
http://www.securityfocus.com/bid/75912	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-296	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-297	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-298	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-299	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-300	Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-301	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-06-01T16:00:00

Updated: 2017-06-01T15:57:01

Reserved: 2015-07-10T00:00:00

Link: CVE-2015-5473

JSON object: View

NVD Information

Status : Analyzed

Published: 2017-06-01T16:29:00.263

Modified: 2017-06-12T16:01:25.687

Link: CVE-2015-5473

JSON object: View

Redhat Information

No data.

CWE

CWE-22

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-07-13T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple directory traversal vulnerabilities in Samsung SyncThru 6 before 1.0 allow remote attackers to delete arbitrary files via unspecified parameters to (1) upload/updateDriver or (2) upload/addDriver or to execute arbitrary code with SYSTEM privileges via unspecified parameters to (3) uploadCloning.html, (4) fileupload.html, (5) uploadFirmware.html, or (6) upload/driver."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-06-01T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-300"}, {"name": "75912", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/75912"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-296"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-298"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-301"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-297"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-299"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-5473", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple directory traversal vulnerabilities in Samsung SyncThru 6 before 1.0 allow remote attackers to delete arbitrary files via unspecified parameters to (1) upload/updateDriver or (2) upload/addDriver or to execute arbitrary code with SYSTEM privileges via unspecified parameters to (3) uploadCloning.html, (4) fileupload.html, (5) uploadFirmware.html, or (6) upload/driver."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.zerodayinitiative.com/advisories/ZDI-15-300", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-300"}, {"name": "75912", "refsource": "BID", "url": "http://www.securityfocus.com/bid/75912"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-15-296", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-296"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-15-298", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-298"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-15-301", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-301"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-15-297", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-297"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-15-299", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-299"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-5473", "datePublished": "2017-06-01T16:00:00", "dateReserved": "2015-07-10T00:00:00", "dateUpdated": "2017-06-01T15:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:samsung:syncthru_6:*:*:*:*:*:*:*:*", "matchCriteriaId": "539A8482-8295-4E85-8828-D8551A664A45", "versionEndIncluding": "-", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple directory traversal vulnerabilities in Samsung SyncThru 6 before 1.0 allow remote attackers to delete arbitrary files via unspecified parameters to (1) upload/updateDriver or (2) upload/addDriver or to execute arbitrary code with SYSTEM privileges via unspecified parameters to (3) uploadCloning.html, (4) fileupload.html, (5) uploadFirmware.html, or (6) upload/driver."}, {"lang": "es", "value": "Varias vulnerabilidades de desplazamiento de directorios en Samsung SyncThru 6 anteriores a la versi\u00f3n1.0 permiten a atacantes remotos borrar archivos arbitrarios mediante par\u00e1metros no especificados para (1) cargar / actualizar driver o (2) cargar / a\u00f1adir driver o ejecutar c\u00f3digo arbitrario con privilegios de sistema a trav\u00e9s de par\u00e1metros no especificados a (3) uploadCloning.html, (4) fileupload.html, (5) uploadFirmware.html, o (6) subir / driver."}], "id": "CVE-2015-5473", "lastModified": "2017-06-12T16:01:25.687", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-06-01T16:29:00.263", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/75912"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-296"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-297"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-298"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-299"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-300"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-301"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}