Sign-up

ID

VAR-201703-0266


CVE

CVE-2015-5729


TITLE

plural Samsung Smart TV and Xpress of Soft Access Point Vulnerabilities that capture important information on functions

Trust: 0.8

sources: JVNDB: JVNDB-2015-007452

DESCRIPTION

The Soft Access Point (AP) feature in Samsung Smart TVs X10P, X12, X14H, X14J, and NT14U and Xpress M288OFW printers generate weak WPA2 PSK keys, which makes it easier for remote attackers to obtain sensitive information or bypass authentication via a brute-force attack. Samsung SmartTV and Printers are prone to a security vulnerability that may allow attackers to obtain sensitive information. Attackers can exploit this issue with brute-force techniques to obtain passwords that can aid in further attacks. Samsung Smart TVs X10P, etc. are all smart TVs of South Korea's Samsung (Samsung) that integrate network content, Apps applications, AllShare content, search functions, and traditional TV channel lists into one user interface. Soft Access Point (AP) is one of the wireless access functions. There are security vulnerabilities in the Soft AP function of several Samsung products. The following products are affected: Samsung Smart TVs X10P, X12, X14H, X14J, NT14U, Xpress M288OFW. ================================================================ Samsung softap weak random generated password (This affects SmartTV and Printers) ================================================================ Information ********************** Vulnerability Type : Weak password Vulnerable Version : many Severity: Medium Author – Augusto Pereyra CVE-ID: CVE-2015-5729 (waiting) Twitter: @aedpereyra Description *********************** Samsung SoftAP WPA2-PSK weak password randomly generated. It’s possible intersept wpa2-psk handshake and crack the password using aircrack in a few hours Detailed description ************************** http://kaoticoneutral.blogspot.com.ar/2015/12/samsung-smarttv-and-printers-weak.html Severity Level: ========================================================= Medium Description: ========================================================== Vulnerable Product: [+] Samsung Smartvs with wifi included (Some of this firmware could be in process) Model Firmware patched X10P EU T-MST10PDEUCB-1210.0 X10P US T-MST10PAUSCB-1300.0 X10P US T-MST10PAUSCP-1302.0 X10P IBR T-MST10PIBRCB-1104.0 X12 EU T-MST12DEUCB-1111.4 X12 US T-MST12AKUCB-1114.0 X14H EU T-MST14DEUCB-1023.0 X14H US T-MST14AKUCB-1100.4 X14H CN T-MST14DCNCB-1010.0 X14J CN T-MS14JDCNCB-1004.2 X14J US T-MS14JAKUCB - 1102.5 X14J EU T-MS14JDEUCB-1018.0 NT14U EU T-NT14UDEUCB-1007.1 NT14U US T-NT14UAKUCB-1008.0 NT14U CN T-NT14UDCNCB-1003.1 [+] May be all printers Xpress series. Confirmed in M288OFW Vulnerable Parameter(s): [+] WPA2 password Advisory Timeline ************************ 20-Jul-2015- Reported 27-Jul-2015- Vendor Response 02-Dec-2015- Vendor Fixed some models 17-Dec-2015- Public disclosed Fixed Version: ***************** All version could be fixed if you read the workaround described in "Detailed Description" Reference ***************** https://samsungtvbounty.com/HallofFame.aspx http://kaoticoneutral.blogspot.com.ar/2015/12/samsung-smarttv-and-printers-weak.html

Trust: 2.07

sources: NVD: CVE-2015-5729 // JVNDB: JVNDB-2015-007452 // BID: 79675 // VULHUB: VHN-83690 // PACKETSTORM: 134976

AFFECTED PRODUCTS

vendor:samsungmodel:x12scope:eqversion:t-mst12deucb-1111.4

Trust: 1.6

vendor:samsungmodel:x10pscope:eqversion:t-mst10pdeucb-1210.0

Trust: 1.6

vendor:samsungmodel:x10pscope:eqversion:t-mst10pibrcb-1104.0

Trust: 1.6

vendor:samsungmodel:nt14uscope:eqversion:t-nt14udeucb-1007.1

Trust: 1.6

vendor:samsungmodel:x14jscope:eqversion:t-ms14jdeucb-1018.0

Trust: 1.6

vendor:samsungmodel:x14hscope:eqversion:t-mst14deucb-1023.0

Trust: 1.6

vendor:samsungmodel:x10pscope:eqversion:t-mst10pauscp-1302.0

Trust: 1.6

vendor:samsungmodel:m288ofwscope:eqversion: -

Trust: 1.6

vendor:samsungmodel:x14jscope:eqversion:t-ms14jdcncb-1004.2

Trust: 1.6

vendor:samsungmodel:x14hscope:eqversion:t-mst14akucb-1100.4

Trust: 1.6

vendor:samsungmodel:xpress series printer m288ofwscope: - version: -

Trust: 1.1

vendor:samsungmodel:nt14uscope:eqversion:t-nt14udcncb-1003.1

Trust: 1.0

vendor:samsungmodel:nt14uscope:eqversion:t-nt14uakucb-1008.0

Trust: 1.0

vendor:samsungmodel:x12scope:eqversion:t-mst12akucb-1114.0

Trust: 1.0

vendor:samsungmodel:x14jscope:eqversion:t-ms14jakucb-1102.5

Trust: 1.0

vendor:samsungmodel:x14hscope:eqversion:t-mst14dcncb-1010.0

Trust: 1.0

vendor:samsungmodel:smart tv nt14uscope: - version: -

Trust: 0.8

vendor:samsungmodel:smart tv x10pscope: - version: -

Trust: 0.8

vendor:samsungmodel:smart tv x12scope: - version: -

Trust: 0.8

vendor:samsungmodel:smart tv x14hscope: - version: -

Trust: 0.8

vendor:samsungmodel:smart tv x14jscope: - version: -

Trust: 0.8

vendor:samsungmodel:smarttvscope:eqversion:0

Trust: 0.3

sources: BID: 79675 // JVNDB: JVNDB-2015-007452 // CNNVD: CNNVD-201512-591 // NVD: CVE-2015-5729

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-5729
value: CRITICAL

Trust: 1.0

NVD: CVE-2015-5729
value: CRITICAL

Trust: 0.8

CNNVD: CNNVD-201512-591
value: MEDIUM

Trust: 0.6

VULHUB: VHN-83690
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-5729
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-83690
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2015-5729
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-83690 // JVNDB: JVNDB-2015-007452 // CNNVD: CNNVD-201512-591 // NVD: CVE-2015-5729

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-83690 // JVNDB: JVNDB-2015-007452 // NVD: CVE-2015-5729

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201512-591

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201512-591

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-007452

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-83690

PATCH
title:トップページurl:http://www.galaxymobile.jp/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-007452

EXTERNAL IDS
db:NVDid:CVE-2015-5729
Trust: 2.9
db:PACKETSTORMid:134976
Trust: 2.6
db:BIDid:79675
Trust: 2.0
db:SECTRACKid:1034504
Trust: 1.7
db:SECTRACKid:1034503
Trust: 1.7
db:JVNDBid:JVNDB-2015-007452
Trust: 0.8
db:CNNVDid:CNNVD-201512-591
Trust: 0.7
db:VULHUBid:VHN-83690
Trust: 0.1
sources:
            
            
            VULHUB: VHN-83690 // 
            
            
            
            BID: 79675 // 
            
            
            
            JVNDB: JVNDB-2015-007452 // 
            
            
            
            PACKETSTORM: 134976 // 
            
            
            
            CNNVD: CNNVD-201512-591 // 
            
            
            
            NVD: CVE-2015-5729

REFERENCES
url:http://packetstormsecurity.com/files/134976/samsung-softap-weak-password.html
Trust: 2.5
url:http://kaoticoneutral.blogspot.com.ar/2015/12/samsung-smarttv-and-printers-weak.html
Trust: 2.1
url:http://www.securityfocus.com/bid/79675
Trust: 1.7
url:http://seclists.org/fulldisclosure/2015/dec/79
Trust: 1.7
url:http://www.securitytracker.com/id/1034503
Trust: 1.7
url:http://www.securitytracker.com/id/1034504
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2015-5729
Trust: 0.9
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5729
Trust: 0.8
url:http://kaoticoneutral.blogspot.jp/2015/12/samsung-smarttv-and-printers-weak.html
Trust: 0.8
url:http://www.samsung.com/
Trust: 0.3
url:https://samsungtvbounty.com/halloffame.aspx
Trust: 0.1
sources:
            
            
            VULHUB: VHN-83690 // 
            
            
            
            BID: 79675 // 
            
            
            
            JVNDB: JVNDB-2015-007452 // 
            
            
            
            PACKETSTORM: 134976 // 
            
            
            
            CNNVD: CNNVD-201512-591 // 
            
            
            
            NVD: CVE-2015-5729

CREDITS
Augusto Pereyra
Trust: 1.0
sources:
            
            
            BID: 79675 // 
            
            
            
            PACKETSTORM: 134976 // 
            
            
            
            CNNVD: CNNVD-201512-591

SOURCES
db:VULHUBid:VHN-83690
db:BIDid:79675
db:JVNDBid:JVNDB-2015-007452
db:PACKETSTORMid:134976
db:CNNVDid:CNNVD-201512-591
db:NVDid:CVE-2015-5729

LAST UPDATE DATE
2024-11-23T22:42:13.419000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-83690date:2017-04-04T00:00:00
db:BIDid:79675date:2015-12-17T00:00:00
db:JVNDBid:JVNDB-2015-007452date:2017-05-01T00:00:00
db:CNNVDid:CNNVD-201512-591date:2017-03-24T00:00:00
db:NVDid:CVE-2015-5729date:2024-11-21T02:33:43.527

SOURCES RELEASE DATE
db:VULHUBid:VHN-83690date:2017-03-23T00:00:00
db:BIDid:79675date:2015-12-17T00:00:00
db:JVNDBid:JVNDB-2015-007452date:2017-05-01T00:00:00
db:PACKETSTORMid:134976date:2015-12-18T21:10:57
db:CNNVDid:CNNVD-201512-591date:2015-12-25T00:00:00
db:NVDid:CVE-2015-5729date:2017-03-23T20:59:00.390