CVE-2017-16674 - Vulnerability Details - OpenCVE

Datto Windows Agent allows unauthenticated remote command execution via a modified command in conjunction with CVE-2017-16673 exploitation, aka an attack with a malformed primary whitelisted command and a secondary non-whitelisted command. This affects Datto Windows Agent (DWA) 1.0.5.0 and earlier. In other words, an attacker could combine this "primary/secondary" attack with the CVE-2017-16673 "rogue pairing" attack to achieve unauthenticated access to all agent machines running these older DWA versions.

No CVSS v4.0

No CVSS v3.1

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Datto	Windows Agent

Configuration 1 [-]

cpe:2.3:a:datto:windows_agent:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.datto.com/partner-security-update-nov2017

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-11-09T04:00:00Z

Updated: 2024-09-17T03:58:37.251Z

Reserved: 2017-11-08T00:00:00Z

Link: CVE-2017-16674

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-11-09T04:29:00.300

Modified: 2024-11-21T03:16:48.370

Link: CVE-2017-16674

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Datto Windows Agent allows unauthenticated remote command execution via a modified command in conjunction with CVE-2017-16673 exploitation, aka an attack with a malformed primary whitelisted command and a secondary non-whitelisted command. This affects Datto Windows Agent (DWA) 1.0.5.0 and earlier. In other words, an attacker could combine this \"primary/secondary\" attack with the CVE-2017-16673 \"rogue pairing\" attack to achieve unauthenticated access to all agent machines running these older DWA versions."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-11-09T04:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.datto.com/partner-security-update-nov2017"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-16674", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Datto Windows Agent allows unauthenticated remote command execution via a modified command in conjunction with CVE-2017-16673 exploitation, aka an attack with a malformed primary whitelisted command and a secondary non-whitelisted command. This affects Datto Windows Agent (DWA) 1.0.5.0 and earlier. In other words, an attacker could combine this \"primary/secondary\" attack with the CVE-2017-16673 \"rogue pairing\" attack to achieve unauthenticated access to all agent machines running these older DWA versions."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.datto.com/partner-security-update-nov2017", "refsource": "CONFIRM", "url": "https://www.datto.com/partner-security-update-nov2017"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T20:35:19.789Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.datto.com/partner-security-update-nov2017"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-16674", "datePublished": "2017-11-09T04:00:00Z", "dateReserved": "2017-11-08T00:00:00Z", "dateUpdated": "2024-09-17T03:58:37.251Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:datto:windows_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "A133E54A-1945-4BF7-8827-1FB03CB61715", "versionEndIncluding": "1.0.5.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Datto Windows Agent allows unauthenticated remote command execution via a modified command in conjunction with CVE-2017-16673 exploitation, aka an attack with a malformed primary whitelisted command and a secondary non-whitelisted command. This affects Datto Windows Agent (DWA) 1.0.5.0 and earlier. In other words, an attacker could combine this \"primary/secondary\" attack with the CVE-2017-16673 \"rogue pairing\" attack to achieve unauthenticated access to all agent machines running these older DWA versions."}, {"lang": "es", "value": "Datto Windows Agent permite la ejecuci\u00f3n remota de comandos sin autenticar mediante un comando modificado junto con la explotaci\u00f3n de CVE-2017-16673; es decir, un ataque con un comando primario en lista blanca mal formado y un comando secundario que no est\u00e1 en una lista blanca. Esto afecta a Datto Windows Agent (DWA) 1.0.5.0 y anteriores. En otras palabras, un atacante podr\u00eda combinar este ataque \"primario/secundario\" con el ataque de emparejamiento malicioso CVE-2017-16673 para conseguir acceso no autenticado a todas las m\u00e1quinas agentes que ejecutan estas versiones antiguas de DWA."}], "id": "CVE-2017-16674", "lastModified": "2024-11-21T03:16:48.370", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 4.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.3, "impactScore": 6.0, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-11-09T04:29:00.300", "references": [{"source": "cve@mitre.org", "tags": ["Mitigation", "Patch", "Vendor Advisory"], "url": "https://www.datto.com/partner-security-update-nov2017"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mitigation", "Patch", "Vendor Advisory"], "url": "https://www.datto.com/partner-security-update-nov2017"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}