Vulnerability Description
Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 (Build427) and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded and executed.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Saat | Netizen | <= 1.2.0.8 |
| Saat | Netizen Installer | <= 1.2.0.424 |
| Microsoft | Windows | - |
References
- https://jvn.jp/en/vu/JVNVU97339542/Third Party Advisory
- https://web-support.saat.jp/hc/ja/articles/4406222933785Vendor Advisory
- https://jvn.jp/en/vu/JVNVU97339542/Third Party Advisory
- https://web-support.saat.jp/hc/ja/articles/4406222933785Vendor Advisory
FAQ
What is CVE-2016-1203?
CVE-2016-1203 is a vulnerability with a CVSS score of 8.1 (HIGH). Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 (Build427) and earlier allows a remote unauthenticated attacker to conduct a ...
How severe is CVE-2016-1203?
CVE-2016-1203 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-1203?
Check the references section above for vendor advisories and patch information. Affected products include: Saat Netizen, Saat Netizen Installer, Microsoft Windows.