CVE-2017-2209 - OpenCVE

Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18) and ver2.0 and later (For the first installation) (The versions which were available on the website prior to 2017 April 4) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Santeikohyo	Installer Of Houkokusyo Sakusei Shien Tool

Configuration 1 [-]

OR	cpe:2.3:a:santeikohyo:installer_of_houkokusyo_sakusei_shien_tool:2.0:::::::*
	cpe:2.3:a:santeikohyo:installer_of_houkokusyo_sakusei_shien_tool:3.02:::::::*
	cpe:2.3:a:santeikohyo:installer_of_houkokusyo_sakusei_shien_tool:3.03:::::::*

References

Link	Resource
http://ghg-santeikohyo.env.go.jp/files/system/report_20170526.pdf	Vendor Advisory
http://ghg-santeikohyo.env.go.jp/files/system/report_20170529_rev.pdf	Vendor Advisory
http://ghg-santeikohyo.env.go.jp/tool	Vendor Advisory
https://jvn.jp/en/jp/JVN24087303/index.html	Patch Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: jpcert

Published: 2017-06-09T16:00:00

Updated: 2017-06-09T15:57:01

Reserved: 2016-12-01T00:00:00

Link: CVE-2017-2209

JSON object: View

NVD Information

Status : Analyzed

Published: 2017-06-09T16:29:01.890

Modified: 2019-10-03T00:03:26.223

Link: CVE-2017-2209

JSON object: View

Redhat Information

No data.

CWE

CWE-426

{"containers": {"cna": {"affected": [{"product": "Installer of Houkokusyo Sakusei Shien Tool", "vendor": "Ministry of the Environment", "versions": [{"status": "affected", "version": "ver3.0.2(For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18)"}, {"status": "affected", "version": "ver2.0 and later(For new installations) (The versions which were available on the website prior to 2017 April 4)"}]}], "datePublic": "2017-06-05T00:00:00", "descriptions": [{"lang": "en", "value": "Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18) and ver2.0 and later (For the first installation) (The versions which were available on the website prior to 2017 April 4) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."}], "problemTypes": [{"descriptions": [{"description": "Untrusted search path vulnerability", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-06-09T15:57:01", "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170529_rev.pdf"}, {"tags": ["x_refsource_MISC"], "url": "http://ghg-santeikohyo.env.go.jp/tool"}, {"name": "JVN#24087303", "tags": ["third-party-advisory", "x_refsource_JVN"], "url": "https://jvn.jp/en/jp/JVN24087303/index.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170526.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "vultures@jpcert.or.jp", "ID": "CVE-2017-2209", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Installer of Houkokusyo Sakusei Shien Tool", "version": {"version_data": [{"version_value": "ver3.0.2(For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18)"}, {"version_value": "ver2.0 and later(For new installations) (The versions which were available on the website prior to 2017 April 4)"}]}}]}, "vendor_name": "Ministry of the Environment"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18) and ver2.0 and later (For the first installation) (The versions which were available on the website prior to 2017 April 4) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Untrusted search path vulnerability"}]}]}, "references": {"reference_data": [{"name": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170529_rev.pdf", "refsource": "CONFIRM", "url": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170529_rev.pdf"}, {"name": "http://ghg-santeikohyo.env.go.jp/tool", "refsource": "MISC", "url": "http://ghg-santeikohyo.env.go.jp/tool"}, {"name": "JVN#24087303", "refsource": "JVN", "url": "https://jvn.jp/en/jp/JVN24087303/index.html"}, {"name": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170526.pdf", "refsource": "CONFIRM", "url": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170526.pdf"}]}}}}, "cveMetadata": {"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "assignerShortName": "jpcert", "cveId": "CVE-2017-2209", "datePublished": "2017-06-09T16:00:00", "dateReserved": "2016-12-01T00:00:00", "dateUpdated": "2017-06-09T15:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:santeikohyo:installer_of_houkokusyo_sakusei_shien_tool:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "B5CFB799-4869-4EE5-975B-783E16A959EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:santeikohyo:installer_of_houkokusyo_sakusei_shien_tool:3.02:*:*:*:*:*:*:*", "matchCriteriaId": "6C5F17E3-DA72-46B5-9354-2CF9174651E8", "vulnerable": true}, {"criteria": "cpe:2.3:a:santeikohyo:installer_of_houkokusyo_sakusei_shien_tool:3.03:*:*:*:*:*:*:*", "matchCriteriaId": "405F79B7-09CF-4D2B-AD86-56C535EBF51B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18) and ver2.0 and later (For the first installation) (The versions which were available on the website prior to 2017 April 4) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."}, {"lang": "es", "value": "Una vulnerabilidad de ruta (path) de b\u00fasqueda no seguros en el instalador de Houkokusyo Sakusei Shien Tool versi\u00f3n 3.0.2 (Para la primera instalaci\u00f3n) (La versi\u00f3n que estuvo disponible en el sitio web del 4 de abril de 2017 al 18 de mayo de 2017) y versi\u00f3n 2.0 y posterior (Para la primera instalaci\u00f3n) (las versiones que estaban disponibles en el sitio web antes del 4 de abril de 2017), permite a un atacante alcanzar privilegios por medio de un archivo DLL de tipo caballo de Troya en un directorio no especificado."}], "id": "CVE-2017-2209", "lastModified": "2019-10-03T00:03:26.223", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-06-09T16:29:01.890", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Vendor Advisory"], "url": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170526.pdf"}, {"source": "vultures@jpcert.or.jp", "tags": ["Vendor Advisory"], "url": "http://ghg-santeikohyo.env.go.jp/files/system/report_20170529_rev.pdf"}, {"source": "vultures@jpcert.or.jp", "tags": ["Vendor Advisory"], "url": "http://ghg-santeikohyo.env.go.jp/tool"}, {"source": "vultures@jpcert.or.jp", "tags": ["Patch", "Third Party Advisory", "VDB Entry"], "url": "https://jvn.jp/en/jp/JVN24087303/index.html"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-426"}], "source": "nvd@nist.gov", "type": "Primary"}]}