RemoteDocs R-Viewer RDZ file code execution
| remotedocs-rdz-code-execution (36652) |  High Risk |
Description:
RemoteDocs R-Viewer could allow a remote attacker to execute arbitrary code on the system, caused by a design error in the R-Viewer application. By persuading a victim to open a specially-crafted RDZ file, a remote attacker could exploit this vulnerability to replace the normal encrypted RDZ file and execute arbitrary code on the system with the privileges of the victim.
*CVSS:
| Base Score: | 7.6 |
| Access Vector: | Network |
| Access Complexity: | High |
| Authentication: | None |
| Confidentiality Impact: | Complete |
| Integrity Impact: | Complete |
| Availability Impact: | Complete |
| Temporal Score: | 5.6 |
| Exploitability: | Unproven |
| Remediation Level: | Official-Fix |
| Report Confidence: | Confirmed |
Consequences:
Gain Access
Remedy:
Refer to SYMSA-2007-009 for patch, upgrade, or suggested workaround information. See References.
References:
- BugTraq Mailing List, Mon Sep 17 2007 - 11:34:16 CDT: SYMSA-2007-009: RemoteDocs R-Viewer Code Execution and Sensitive Information Disclosure.
- RemoteDocs Web site: RemoteDocs R-Viewer.
- SYMSA-2007-009: RemoteDocs R-Viewer Code Execution and Sensitive Information Disclosure.
- BID-25591: RemoteDocs R-Viewer Remote Code Execution and Information Disclosure Vulnerabilities
- CVE-2007-4750: Unspecified vulnerability in RemoteDocs R-Viewer before 1.6.3768 allows user-assisted remote attackers to execute arbitrary code via a crafted RDZ archive in which the first file has an executable extension.
- SA26835: RemoteDocs R-Viewer RDZ Code Execution and Information Disclosure
- SECTRACK ID: 1018703: R-Viewer Lets Remote Users Execute Arbitrary Code and Local Users View Potentially Sensitive File Contents
- VUPEN/ADV-2007-3199: RemoteDocs R-Viewer Code Execution and Information Disclosure Issues
Platforms Affected:
- Data-Vision RemoteDocs R-Viewer 1.6.2836
Reported:
Sep 17, 2007
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net
* According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES "AS IS" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall IBM be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.