CVE-2018-19204
Last modified
CVE-2018-19204 is a vulnerability of currently unknown severity. PRTG Network Monitor before 18.3.44.2054 allows a remote authenticated attacker (with read-write privileges) to execute arbitrary code and OS commands with system privileges. When creating an HTTP Advanced Sensor, the user's input in the POST parameter 'proxyport_' is mishandled. EPSS estimates a 4.64% chance of exploitation in the next 30 days.
Description
PRTG Network Monitor before 18.3.44.2054 allows a remote authenticated attacker (with read-write privileges) to execute arbitrary code and OS commands with system privileges. When creating an HTTP Advanced Sensor, the user's input in the POST parameter 'proxyport_' is mishandled. The attacker can craft an HTTP request and override the 'writeresult' command-line parameter for HttpAdvancedSensor.exe to store arbitrary data in an arbitrary place on the file system. For example, the attacker can create an executable file in the \Custom Sensors\EXE directory and execute it by creating EXE/Script Sensor.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Paessler | Prtg Network Monitor | < 18.3.44.2054 |
References
- http://en.securitylab.ru/lab/PT-2018-23Third Party Advisory
- https://www.paessler.com/prtg/history/stable#18.3.44.2054Vendor Advisory
- https://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2018-23/Third Party Advisory
- http://en.securitylab.ru/lab/PT-2018-23Third Party Advisory
- https://www.paessler.com/prtg/history/stable#18.3.44.2054Vendor Advisory
- https://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2018-23/Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-19204?
How severe is CVE-2018-19204?
How do I fix CVE-2018-19204?
Are you affected by CVE-2018-19204?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST