CVE-2014-5208

{"id": "CVE-2014-5208", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-12-22T17:59:00.063", "references": [{"url": "http://www.yokogawa.com/dcs/security/ysar/YSAR-14-0003E.pdf", "tags": ["Vendor Advisory"], "source": "cret@cert.org"}, {"url": "https://community.rapid7.com/community/metasploit/blog/2014/08/09/r7-2014-10-disclosure-yokogawa-centum-cs3000-bkbcopydexe-file-system-access", "tags": ["Exploit"], "source": "cret@cert.org"}, {"url": "https://ics-cert.us-cert.gov/advisories/ICSA-14-260-01A", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cret@cert.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS 3000 through R3.09.50 and CENTUM VP through R4.03.00 and R5.x through R5.04.00, and Exaopc through R3.72.10, does not require authentication, which allows remote attackers to read arbitrary files via a RETR operation, write to arbitrary files via a STOR operation, or obtain sensitive database-location information via a PMODE operation, a different vulnerability than CVE-2014-0784."}, {"lang": "es", "value": "Gesti\u00f3n de paquetes por lotes en BKBCopyD.exe en Yokogawa CENTUM CS 3000 a trav\u00e9s de R3.09.50 y CENTUM VP a trav\u00e9s de R4.03.00 y R5x a trav\u00e9s de R5.04.00, y Exaopc a trav\u00e9s de R3.72.10 No requiere autenticaci\u00f3n, lo que permite a atacantes leer ficheros arbitrarios a trav\u00e9s de la operaci\u00f3n RETR, escribir en ficheros arbitrarios a trav\u00e9s de la operaci\u00f3n STOR, o obtener informaci\u00f3n sensible de la ubicaci\u00f3n de la base de datos a trav\u00e9s de la operaci\u00f3n PMODE, una vulnerabilidad diferente a CVE-2014-0784"}], "lastModified": "2014-12-22T19:27:03.713", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:yokogawa:exaopc:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9557029A-E073-4BF9-8FB9-9C6C4DBAAD46", "versionEndIncluding": "3.71.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:yokogawa:exaopc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4BA314B6-A3A0-44EC-86D5-E8EB4E5EF9F7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40831829-1F44-439C-9A19-7DAAFD36E32F"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4F916DD-24BC-4955-9C30-A52C2A41B69C"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D660F6DA-8694-4F23-B967-299953DFD293"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1A408C8-A7CF-439D-85E5-0DD8056A5908"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA37B07D-505E-414A-9E69-E2AAB239CA35"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.06:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "32BBCAC6-AB8D-4D68-A5E4-F7FBFC3F4B33"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.07:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB1B75CD-C0BA-4046-A49E-9903B3B5972C"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.08:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E07B64DB-E820-467B-A603-971970637FB1"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.08.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6813F466-42F8-4013-97A4-DA6E5D7C52F8"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.08.70:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B0FEB1C-1427-4875-82C6-7EBD2B262766"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.09:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1824EC58-BCB1-4876-8729-2B6FF2FF8D1D"}, {"criteria": "cpe:2.3:a:yokogawa:centum_cs_3000:r3.09.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B948C6E-88E0-4255-BBFF-06EA3EE3E532"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:yokogawa:centum_cs_3000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BAF123F6-D4A3-49B3-B8BC-14AA63E3A46A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:yokogawa:centum_vp:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17E2BF7A-E5D0-43AE-A873-EFC735EC58A2", "versionEndIncluding": "r4.03.00"}, {"criteria": "cpe:2.3:a:yokogawa:centum_vp:r5.01.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03E36D9A-F300-43F1-BB98-CBD6ED4C23D4"}, {"criteria": "cpe:2.3:a:yokogawa:centum_vp:r5.01.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C57B4087-1B80-49E3-8E8E-65CA1F72F650"}, {"criteria": "cpe:2.3:a:yokogawa:centum_vp:r5.02.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BAE82C01-C287-47A0-8141-AA2DF5E477D4"}, {"criteria": "cpe:2.3:a:yokogawa:centum_vp:r5.03.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BF09836-F1D9-45B1-A9D7-CAE63D07037E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:yokogawa:centum_vp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "161A4767-228C-4681-9D20-81D9380CE48A"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cret@cert.org"}