======================================================================
Secunia Research 18/03/2005
- My Firewall Plus Arbitrary File Corruption Vulnerability -
======================================================================
Table of Contents
Affected Software....................................................1
Severity.............................................................2
Vendor's Description of Software.....................................3
Description of Vulnerability.........................................4
Solution.............................................................5
Time Table...........................................................6
Credits..............................................................7
References...........................................................8
About Secunia........................................................9
Verification........................................................10
======================================================================
1) Affected Software
My Firewall Plus 5.0 (build 1117).
NOTE: Other versions may also be affected.
======================================================================
2) Severity
Rating: Not critical
Impact: Manipulation of data, DoS
Where: Local System
======================================================================
3) Vendor's Description of Software
My Firewall Plus:
"Corporate strength firewall for your personal PC".
Product Link:
http://www.webroot.com/products/myfirewallplus/
======================================================================
4) Description of Vulnerability
Secunia Research has discovered a vulnerability in My Firewall Plus,
which can be exploited by malicious, local users to manipulate the
contents of arbitrary files on a vulnerable system.
The vulnerability is caused due to the Log Viewer's export
functionality saving log files without dropping its privileges first.
This can be exploited to corrupt arbitrary files on the system with
logging information.
Successful exploitation requires that the user has access to the Log
Viewer.
======================================================================
5) Solution
Update to My Firewall Plus 5.0 (build 1119) or apply patch.
Patch:
http://www.webroot.com/services/mfp_patch.exe
======================================================================
6) Time Table
18/02/2005 - Vendor notified.
22/02/2005 - Vendor response.
18/03/2005 - Public disclosure.
======================================================================
7) Credits
Discovered by Carsten Eiram, Secunia Research.
======================================================================
8) References
The Common Vulnerabilities and Exposures (CVE) project has assigned
candidate number CAN-2005-0515 for the vulnerability.
======================================================================
9) About Secunia
Secunia collects, validates, assesses, and writes advisories regarding
all the latest software vulnerabilities disclosed to the public. These
advisories are gathered in a publicly available database at the
Secunia website:
http://secunia.com/
Secunia offers services to our customers enabling them to receive all
relevant vulnerability information to their specific system
configuration.
Secunia offers a FREE mailing list called Secunia Security Advisories:
http://secunia.com/secunia_security_advisories/
======================================================================
10) Verification
Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2004-20/
Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/
======================================================================
|
