Vulnerability Description
An issue was discovered in Reprise RLM 14.2. When editing the license file, it is possible for an admin user to enable an option to run arbitrary executables, as demonstrated by an ISV demo "C:\Windows\System32\calc.exe" entry. An attacker can exploit this to run a malicious binary on startup, or when triggering the Reread/Restart Servers function on the webserver. (Exploitation does not require CVE-2018-15573, because the license file is meant to be changed in the application.)
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Reprisesoftware | Reprise License Manager | >= 14.2, < 17.0 |
References
- http://packetstormsecurity.com/files/165194/Reprise-License-Manager-14.2-Remote-ExploitThird Party AdvisoryVDB Entry
- https://reprisesoftware.com/admin/rlm-admin-download.php?&euagree=yesPatchProductVendor Advisory
- http://packetstormsecurity.com/files/165194/Reprise-License-Manager-14.2-Remote-ExploitThird Party AdvisoryVDB Entry
- https://reprisesoftware.com/admin/rlm-admin-download.php?&euagree=yesPatchProductVendor Advisory
FAQ
What is CVE-2021-44153?
CVE-2021-44153 is a vulnerability with a CVSS score of 7.2 (HIGH). An issue was discovered in Reprise RLM 14.2. When editing the license file, it is possible for an admin user to enable an option to run arbitrary executables, as demonstrated by an ISV demo "C:\Window...
How severe is CVE-2021-44153?
CVE-2021-44153 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-44153?
Check the references section above for vendor advisories and patch information. Affected products include: Reprisesoftware Reprise License Manager.