RemoteDocs R-Viewer temporary directories information disclosure
| remotedocs-directories-info-disclosure (36654) |  Low Risk |
Description:
RemoteDocs R-Viewer could allow a remote attacker to obtain sensitive information. Unencrypted copies of opened documents are stored in a predictable temporary directory and are not removed on a regular basis. An attacker could exploit this vulnerability to expose encrypted data and obtain sensitive information.
*CVSS:
| Base Score: | 5 |
| Access Vector: | Network |
| Access Complexity: | Low |
| Authentication: | None |
| Confidentiality Impact: | Partial |
| Integrity Impact: | None |
| Availability Impact: | None |
| Temporal Score: | 3.7 |
| Exploitability: | Unproven |
| Remediation Level: | Official-Fix |
| Report Confidence: | Confirmed |
Consequences:
Obtain Information
Remedy:
Refer to SYMSA-2007-009 for patch, upgrade, or suggested workaround information. See References.
References:
- BugTraq Mailing List, Mon Sep 17 2007 - 11:34:16 CDT: SYMSA-2007-009: RemoteDocs R-Viewer Code Execution and Sensitive Information Disclosure.
- RemoteDocs Web site: RemoteDocs R-Viewer.
- SYMSA-2007-009: RemoteDocs R-Viewer Code Execution and Sensitive Information Disclosure.
- BID-25591: RemoteDocs R-Viewer Remote Code Execution and Information Disclosure Vulnerabilities
- CVE-2007-4751: RemoteDocs R-Viewer before 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files.
- SA26835: RemoteDocs R-Viewer RDZ Code Execution and Information Disclosure
- SECTRACK ID: 1018703: R-Viewer Lets Remote Users Execute Arbitrary Code and Local Users View Potentially Sensitive File Contents
- VUPEN/ADV-2007-3199: RemoteDocs R-Viewer Code Execution and Information Disclosure Issues
Platforms Affected:
- Data-Vision RemoteDocs R-Viewer 1.6.2836
Reported:
Sep 17, 2007
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net
* According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES "AS IS" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall IBM be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.