Sign-up

ID

VAR-201901-0468


CVE

CVE-2018-0449


TITLE

Cisco Jabber Client Framework Permissions vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-001366

DESCRIPTION

A vulnerability in the Cisco Jabber Client Framework (JCF) software, installed as part of the Cisco Jabber for Mac client, could allow an authenticated, local attacker to corrupt arbitrary files on an affected device that has elevated privileges. The vulnerability exists due to insecure directory permissions set on a JCF created directory. An authenticated attacker with the ability to access an affected directory could create a hard link to an arbitrary location on the affected system. An attacker could convince another user that has administrative privileges to perform an install or update the Cisco Jabber for Mac client to perform such actions, allowing files to be created in an arbitrary location on the disk or an arbitrary file to be corrupted when it is appended to or overwritten. A local attacker can exploit this issue to obtain sensitive information and perform unauthorized actions; this may aid in launching further attacks. This issue is being tracked by Cisco Bug ID CSCvm60187. Cisco Jabber Client for Mac OS is a set of unified communication client programs based on the Mac OS platform of Cisco (Cisco). The program offers instant messaging, voice and video calling, and more. A local attacker could exploit this vulnerability to create or corrupt arbitrary files anywhere on the disk

Trust: 1.98

sources: NVD: CVE-2018-0449 // JVNDB: JVNDB-2019-001366 // BID: 106520 // VULHUB: VHN-118651

AFFECTED PRODUCTS

vendor:ciscomodel:jabberscope:eqversion:12.1\(0\)

Trust: 1.0

vendor:ciscomodel:jabberscope: - version: -

Trust: 0.8

vendor:ciscomodel:jabber for macscope:eqversion:12.1(0)

Trust: 0.3

sources: BID: 106520 // JVNDB: JVNDB-2019-001366 // NVD: CVE-2018-0449

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-0449
value: MEDIUM

Trust: 1.0

ykramarz@cisco.com: CVE-2018-0449
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-0449
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201901-297
value: MEDIUM

Trust: 0.6

VULHUB: VHN-118651
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2018-0449
severity: LOW
baseScore: 3.3
vectorString: AV:L/AC:M/AU:N/C:N/I:P/A:P
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.4
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-118651
severity: LOW
baseScore: 3.3
vectorString: AV:L/AC:M/AU:N/C:N/I:P/A:P
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.4
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-0449
baseSeverity: MEDIUM
baseScore: 4.2
vectorString: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 0.6
impactScore: 3.6
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2018-0449
baseSeverity: MEDIUM
baseScore: 5.1
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 4.2
version: 3.0

Trust: 1.0

NVD: CVE-2018-0449
baseSeverity: MEDIUM
baseScore: 4.2
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-118651 // JVNDB: JVNDB-2019-001366 // CNNVD: CNNVD-201901-297 // NVD: CVE-2018-0449 // NVD: CVE-2018-0449

PROBLEMTYPE DATA

problemtype:CWE-275

Trust: 1.9

problemtype:CWE-732

Trust: 1.1

sources: VULHUB: VHN-118651 // JVNDB: JVNDB-2019-001366 // NVD: CVE-2018-0449

THREAT TYPE

local

Trust: 0.9

sources: BID: 106520 // CNNVD: CNNVD-201901-297

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201901-297

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-001366

PATCH
title:cisco-sa-20190109-jabr-mac-permissionsurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-jabr-mac-permissions
Trust: 0.8
title:Cisco Jabber Client Framework Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=88489
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2019-001366 // 
            
            
            
            CNNVD: CNNVD-201901-297

EXTERNAL IDS
db:NVDid:CVE-2018-0449
Trust: 2.8
db:BIDid:106520
Trust: 2.0
db:JVNDBid:JVNDB-2019-001366
Trust: 0.8
db:CNNVDid:CNNVD-201901-297
Trust: 0.7
db:VULHUBid:VHN-118651
Trust: 0.1
sources:
            
            
            VULHUB: VHN-118651 // 
            
            
            
            BID: 106520 // 
            
            
            
            JVNDB: JVNDB-2019-001366 // 
            
            
            
            CNNVD: CNNVD-201901-297 // 
            
            
            
            NVD: CVE-2018-0449

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190109-jabr-mac-permissions
Trust: 2.0
url:http://www.securityfocus.com/bid/106520
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0449
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-0449
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-118651 // 
            
            
            
            BID: 106520 // 
            
            
            
            JVNDB: JVNDB-2019-001366 // 
            
            
            
            CNNVD: CNNVD-201901-297 // 
            
            
            
            NVD: CVE-2018-0449

CREDITS
Cisco would like to thank Drew Yao of Appleā€™s Red Team for reporting this vulnerability.
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201901-297

SOURCES
db:VULHUBid:VHN-118651
db:BIDid:106520
db:JVNDBid:JVNDB-2019-001366
db:CNNVDid:CNNVD-201901-297
db:NVDid:CVE-2018-0449

LAST UPDATE DATE
2024-11-23T22:26:04.744000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-118651date:2020-08-28T00:00:00
db:BIDid:106520date:2019-01-09T00:00:00
db:JVNDBid:JVNDB-2019-001366date:2019-02-28T00:00:00
db:CNNVDid:CNNVD-201901-297date:2019-10-17T00:00:00
db:NVDid:CVE-2018-0449date:2024-11-21T03:38:15.270

SOURCES RELEASE DATE
db:VULHUBid:VHN-118651date:2019-01-10T00:00:00
db:BIDid:106520date:2019-01-09T00:00:00
db:JVNDBid:JVNDB-2019-001366date:2019-02-28T00:00:00
db:CNNVDid:CNNVD-201901-297date:2019-01-10T00:00:00
db:NVDid:CVE-2018-0449date:2019-01-10T16:29:00.240