{"vuid":"VU#105686","idnumber":"105686","name":"Thecus NAS Server N8800 contains multiple vulnerabilities","keywords":["thecus","nas","server","n8800"],"overview":"Thecus NAS server N8800 with firmware version 5.03.01, and possibly earlier versions, contains multiple vulnerabilities.","clean_desc":"The 7 Elements advisory states that the Thecus NAS server N8800 device contains the following vulnerabilities: CVE-2013-5667 - Thecus NAS Server N8800 Firmware 5.03.01 get_userid OS Command Injection\nThe application accepts user input through the get_userid parameter that can be used to create OS commands that are redirected to the operating system. An attacker can use this flaw to execute arbitrary commands. CVE-2013-5668 - Thecus NAS Server N8800 Firmware 5.03.01\nThe Domain Administrator Password within the ADS/NT Support page is disclosed due to clear text storage of sensitive information within the GUI. Any user who has access to this page is able to retrieve the ADS/NT administrator ID and password. This could enable an attacker to gain access to the domain hosting the storage server. CVE-2013-5669 - Thecus NAS Server N8800 Firmware 5.03.01 plain text administrative password\nThe Administration Web Page transmits passwords in cleartext, which allows remote attackers to sniff the administrative password. Additional details may be found in the 7 Elements advisory. The CVSS score below is for CVE-2013-5667.","impact":"An attacker may be able to execute arbitrary system commands, steal the Domain Administrator credentials, or sniff administrative passwords.","resolution":"Apply an Update The vendor has released the following firmware updates to address these vulnerabilities. ThecusOS 5 (32 bit): http://www.thecus.com/Downloads/beta/FW/Thecus_NAS_FW_beta_5.03.02.4.rom ThecusOS 5 (64 bit): http://www.thecus.com/Downloads/beta/FW/64_V2.04.05_build7464_FW_N2800_N4510U_N4800_N5550_N7510.rom\nhttp://www.thecus.com/Downloads/beta/FW/64_V2.04.05_build7464_FW_N6850_N8850_N10850_N8900_N12000_N16000.rom\nhttp://www.thecus.com/Downloads/beta/FW/64_V2.04.05_build7464_FW_N7700PROV2_N8800PROV2.rom The vendor claims firmware updates for ThecusOS 6 will be available in a month. If you are unable to upgrade, please consider the following workarounds.","workarounds":"Restrict Access Enable firewall rules to restrict access from untrusted sources.","sysaffected":"","thanks":"Thanks to David Stubley for reporting this vulnerability.","author":"This document was written by Jared Allar.","public":["http://www.thecus.com/","http://www.7elements.co.uk/news/cve-2013-5667","http://www.7elements.co.uk/news/cve-2013-5668","http://www.7elements.co.uk/news/cve-2013-5669","http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"],"cveids":["CVE-2013-5667","CVE-2013-5668","CVE-2013-5669"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2013-11-27T13:06:48Z","publicdate":"2014-01-23T00:00:00Z","datefirstpublished":"2014-01-23T19:07:57Z","dateupdated":"2014-02-10T17:23:06Z","revision":15,"vrda_d1_directreport":"1","vrda_d1_population":"1","vrda_d1_impact":"2","cam_widelyknown":"0","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"0","cam_impact":"0","cam_easeofexploitation":"0","cam_attackeraccessrequired":"0","cam_scorecurrent":"0","cam_scorecurrentwidelyknown":"0","cam_scorecurrentwidelyknownexploited":"0","ipprotocol":"","cvss_accessvector":"N","cvss_accesscomplexity":"L","cvss_authentication":null,"cvss_confidentialityimpact":"C","cvss_integrityimpact":"C","cvss_availabilityimpact":"C","cvss_exploitablity":null,"cvss_remediationlevel":"U","cvss_reportconfidence":"C","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"L","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"10","cvss_basevector":"AV:N/AC:L/Au:N/C:C/I:C/A:C","cvss_temporalscore":"9.5","cvss_environmentalscore":"2.373692496","cvss_environmentalvector":"CDP:ND/TD:L/CR:ND/IR:ND/AR:ND","metric":0.0,"vulnote":null}