CVE-2017-16786 Information
Description
The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with certain privileges to read arbitrary files via (1) the ntpclientcounterlogfile parameter to cgi-bin/mainv2 or (2) vectors involving curl support of the \file\ schema in the firmware update functionality.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Reference
http://packetstormsecurity.com/files/145388/Meinberg-LANTIME-Web-Configuration-Utility-6.16.008-Arbitrary-File-Read.html
http://seclists.org/fulldisclosure/2017/Dec/50
The
Web
Configuration
Utility
in
Meinberg
LANTIME
devices
with
firmware
before
6.24.004
allows
remote
authenticated
users
with
certain
privileges
to
read
arbitrary
files
via
(1)
the
ntpclientcounterlogfile
parameter
to
cgi-bin/mainv2
or
(2)
vectors
involving
curl
support
of
the
\file
schema
in
the
firmware
update
functionality.
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
NONE
Base Score
NONE
Base Severity
6.5
Share on: