Title: APC PowerChute Plus Insecure Shared Folder Permission Vulnerability
Severity: HIGH
Description:
APC PowerChute PLUS is a software package that will safely shutdown computer systems locally or accross a network when UPS power starts to fail. It is intended for use with Unix and Linux variant as well as Microsoft Windows operating environments.
A vulnerability has been reported for PowerChute PLUS 5.0.2 for use with Microsoft Windows. PowerChute Plus installs to the 'Program Files\Pwrchute' folder. It also enables the installation folder to be shared as PWRCHUTE with world writeable permissions without any user notification.
If file sharing is enabled on these machines, remote attackers have access to the shared folder. This may enable attackers install various tools to compromise the vulnerable system or use it as a site for attacks against other systems. If the PowerChute binaries are trojaned or replaced with a backdoor, they may be inadvertently executed by legitimate users of the system.
Affected Products:
- APC PowerChute Plus 5.0.2
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
