Remote Code Execution Vulnerability in BMC Track-It! by BMC Software
CVE-2016-6598

9.8CRITICAL

Key Information:

Vendor

Bmc

Status
Track-it\!
Vendor
CVE Published:
30 January 2018

What is CVE-2016-6598?

The BMC Track-It! 11.4 software exposes an unauthenticated .NET remoting file storage service on port 9010. This configuration permits an attacker to upload arbitrary files to the system, potentially allowing for malicious code execution within the context of the NETWORK SERVICE or SYSTEM accounts. Attackers leveraging this vulnerability can manipulate the underlying file system, leading to severe security implications.

References

http://seclists.org/fulldisclosure/2018/Jan/92
mailing-listx_refsource_FULLDISC
https://github.com/pedrib/PoC/blob/master/advisories/bmc-...
x_refsource_MISC
https://communities.bmc.com/community/bmcdn/bmc_track-it/...
x_refsource_CONFIRM

EPSS Score

36% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.