Vulnerability Description
The Windows installer that the Apache CouchDB team provides was vulnerable to local privilege escalation. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.exe service launcher, or CouchDB batch or binary files. A subsequent service or server restart will then run that binary with administrator privilege. This issue affected CouchDB 2.0.0 (Windows platform only) and was addressed in CouchDB 2.0.0.1.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Couchdb | 2.0.0 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- http://mail-archives.apache.org/mod_mbox/couchdb-dev/201612.mbox/%3C825F65E1-0E5Vendor Advisory
- http://www.securityfocus.com/bid/94766Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/40865/Third Party AdvisoryVDB Entry
- http://mail-archives.apache.org/mod_mbox/couchdb-dev/201612.mbox/%3C825F65E1-0E5Vendor Advisory
- http://www.securityfocus.com/bid/94766Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/40865/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2016-8742?
CVE-2016-8742 is a vulnerability with a CVSS score of 7.8 (HIGH). The Windows installer that the Apache CouchDB team provides was vulnerable to local privilege escalation. All files in the install inherit the file permissions of the parent directory and therefore a ...
How severe is CVE-2016-8742?
CVE-2016-8742 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-8742?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Couchdb, Microsoft Windows.