Critical Vulnerability Information Vulnerability Type: Unauthorized Remote File Access Vulnerability Affected Products: - BitDefender Security for Fileservers - BitDefender Enterprise Manager (BDEM) - All BitDefender Products, using their internal update server product Discoverer: Oliver Karow Detailed Information Link: http://oliver.greyhat.de/2008/01/19/bitdefender-unauthorized-remote-file-access-vulnerability/ Vulnerable Platform: Windows Vulnerable Version: N/A History: - Discovery Date: December 7, 2007 - Email Sent to Vendor: January 16, 2008 - Vendor Response Date: January 18, 2008 - Public Disclosure Date: January 19, 2008 Vulnerability Details: - The vulnerability exists in BitDefender's Update Server, a component used in multiple BitDefender enterprise products, which runs an Http-Daemon. - The process runs with privileges and contains a path traversal flaw, allowing unauthorized access to files outside the application's root directory. Exploitation Method: - Or via web browser: Rating & Risk Level: - CVSS Base Score: 7.8/10 - Risk Level: Medium (中) - Impact Score: 6.9/10 - Exploitability Score: 10/10 - Attack Complexity: Low