Vulnerabilities > CVE-2014-2544 - Code Execution vulnerability in Multiple TIBCO Spotfire Products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
tibco
nessus
NVD
Published: 2014-04-10
Updated: 2014-04-10

Summary

Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.2; Spotfire Professional 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Web Player 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Automation Services 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Deployment Kit 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Desktop 6.x before 6.0.1; and Spotfire Analyst 6.x before 6.0.1 allows remote attackers to execute arbitrary code via unknown vectors.

Vulnerable Configurations

Part Description Count
Application
Tibco
40

Nessus

NASL familyCGI abuses
NASL idTIBCO_SPOTFIRE_SERVER_6_0_2.NASL
descriptionThe remote host is running a version of TIBCO Spotfire Server that is affected by a remote code execution vulnerability due to a unspecified flaw in the Authentication Module. A remote attacker can exploit this vulnerability to execute arbitrary code on the remote host, subject to the privileges of the account running the affected application.
last seen2020-06-01
modified2020-06-02
plugin id78392
published2014-10-13
reporterThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/78392
titleTIBCO Spotfire Server Authentication Module Unspecified Remote Code Execution
code
#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(78392);
  script_version("1.3");
  script_cvs_date("Date: 2018/11/15 20:50:19");

  script_cve_id("CVE-2014-2544");
  script_bugtraq_id(66763);

  script_name(english:"TIBCO Spotfire Server Authentication Module Unspecified Remote Code Execution");
  script_summary(english:"Checks for TIBCO Spotfire Server.");

  script_set_attribute(attribute:"synopsis", value:"The remote host is affected by a remote code execution vulnerability.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of TIBCO Spotfire Server that is
affected by a remote code execution vulnerability due to a unspecified
flaw in the Authentication Module. A remote attacker can exploit this
vulnerability to execute arbitrary code on the remote host, subject to
the privileges of the account running the affected application.");
  # http://www.tibco.com/assets/bltb7daa51c165cf590/spotfire_advisory_20140409_tcm8-20764.txt
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?584e9c5e");
  # https://www.tibco.com/support/advisories/2014/04/tibco-security-advisory-april-9-2014-tibco-spotfire
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?483d2c22");
  script_set_attribute(attribute:"solution", value:"Apply the relevant patch referenced in the vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/04/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/04/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/10/13");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:tibco:spotfire_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.");
  script_family(english:"CGI abuses");

  script_dependencies("tibco_spotfire_server_detect.nbin");
  script_require_keys("installed_sw/TIBCO Spotfire Server");
  script_require_ports("Services/www", 80);

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");
include("install_func.inc");

port = get_http_port(default:80);

app_name = "TIBCO Spotfire Server";
install = get_single_install(app_name:app_name, port:port, exit_if_unknown_ver:TRUE);

url = build_url(port:port, qs:install['path']);
version = install['version'];

fix = FALSE;

if (version =~ "^4\.5\.")
  fix = "4.5.1";
else if (version =~ "^5\.0\.")
  fix = "5.0.2";
else if (version =~ "^5\.5\.")
  fix = "5.5.1";
else if (version =~ "^6\.0\.")
  fix = "6.0.2";

if (fix && ver_compare(ver:version, fix:fix, strict:FALSE) == -1)
{
  if (report_verbosity > 0)
  {
    report =
      '\n  URL               : ' + url +
      '\n  Installed version : ' + version +
      '\n  Fixed version     : ' + fix +
      '\n';

    security_hole(extra:report, port:port);
  }
  else security_hole(port);
  exit(0);
}
else audit(AUDIT_WEB_APP_NOT_AFFECTED, app_name, url, version);

Seebug

bulletinFamilyexploit
descriptionCVE ID:CVE-2014-2544 TIBCO Spotfire是业务数据智能分析软件。 TIBCO Spotfire Server 3.3.3及更早版本、4.5.0、5.0.0、5.0.1、5.5.0、6.0.0、6.0.1、TIBCO Spotfire Professional, Web Player、Automation Services、Deployment Kit 4.0.3及之前版本、4.5.0、4.5.1、5.0.0、5.0.1、5.5.0、6.0.0在实现上存在安全漏洞,可使远程攻击者利用此漏洞执行任意代码。 0 TIBCO Spotfire 目前厂商已经发布了升级补丁以修复漏洞,请下载使用: http://spotfire.tibco.com/discover-spotfire
idSSV:62148
last seen2017-11-19
modified2014-04-14
published2014-04-14
reporterRoot
titleTIBCO Spotfire多个产品远程代码执行漏洞

References