Thintune URL allows attacker to obtain information
| thintune-url-obtain-information (16798) |  Medium Risk |
Description:
Thintune could allow a local attacker to obtain sensitive information. Using the 'file://' URL, a local attacker can view arbitrary files on the system with root privileges.
Platforms Affected:
- eSeSIX Computer GmbH, Thintune 2.4.38 and prior
Remedy:
Upgrade to the latest firmware of Thintune (2.4.39 or later), available from the Thintune Web site. See References.
Consequences:
Obtain Information
References:
- BugTraq Mailing List, Sat Jul 24 2004 - 02:54:53 CDT , eSeSIX Thintune thin client multiple vulnerabilities at http://archives.neohapsis.com/archives/bugtraq/2004-07/0273.html.
- Thintune Web site, Tune your business. THINTUNE at http://www.thintune.com/en/index.htm.
- BID-10794: eSeSIX Thintune Thin Client Devices Multiple Vulnerabilities
- CVE-2004-2051: The Phoenix browser in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allows local users to read arbitrary files via a file:/// URL.
- OSVDB ID: 8249: eSeSIX Thintune Client Local Password Disclosure
- SA12154: Thintune Client Multiple Vulnerabilities
- SECTRACK ID: 1010770: THINTUNE Backdoor Grants Root Access to Remote Users
Reported:
Jul 24, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net