Vulnerability Details CVE-2018-17980
NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is executed. (The directory could, in general, be on a local filesystem or a network share.).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 85.1%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- http://hyp3rlinx.altervista.org/advisories/NOMACHINE-TROJAN-FILE-REMOTE-CODE-EXECUTION.txt
- http://packetstormsecurity.com/files/149784/NoMachine-5.3.26-Remote-Code-Execution.html
- https://www.exploit-db.com/exploits/45611/
- https://www.nomachine.com/TR10P08887
- http://hyp3rlinx.altervista.org/advisories/NOMACHINE-TROJAN-FILE-REMOTE-CODE-EXECUTION.txt
- http://packetstormsecurity.com/files/149784/NoMachine-5.3.26-Remote-Code-Execution.html
- https://www.exploit-db.com/exploits/45611/
- https://www.nomachine.com/TR10P08887
Products affected by CVE-2018-17980
-
cpe:2.3:a:nomachine:nomachine:-
-
cpe:2.3:a:nomachine:nomachine:4.0.0
-
cpe:2.3:a:nomachine:nomachine:4.0.352
-
cpe:2.3:a:nomachine:nomachine:4.0.360
-
cpe:2.3:a:nomachine:nomachine:4.0.362
-
cpe:2.3:a:nomachine:nomachine:4.0.365
-
cpe:2.3:a:nomachine:nomachine:4.0.366
-
cpe:2.3:a:nomachine:nomachine:4.0.367
-
cpe:2.3:a:nomachine:nomachine:4.0.368
-
cpe:2.3:a:nomachine:nomachine:4.0.369
-
cpe:2.3:a:nomachine:nomachine:4.0.370
-
cpe:2.3:a:nomachine:nomachine:4.1.28
-
cpe:2.3:a:nomachine:nomachine:4.1.29
-
cpe:2.3:a:nomachine:nomachine:4.2.15
-
cpe:2.3:a:nomachine:nomachine:4.2.17
-
cpe:2.3:a:nomachine:nomachine:4.2.18
-
cpe:2.3:a:nomachine:nomachine:4.2.19
-
cpe:2.3:a:nomachine:nomachine:4.2.21
-
cpe:2.3:a:nomachine:nomachine:4.2.22
-
cpe:2.3:a:nomachine:nomachine:4.2.23
-
cpe:2.3:a:nomachine:nomachine:4.2.24
-
cpe:2.3:a:nomachine:nomachine:4.2.26
-
cpe:2.3:a:nomachine:nomachine:4.2.27
-
cpe:2.3:a:nomachine:nomachine:4.3
-
cpe:2.3:a:nomachine:nomachine:4.3.24
-
cpe:2.3:a:nomachine:nomachine:4.3.30
-
cpe:2.3:a:nomachine:nomachine:4.4.1
-
cpe:2.3:a:nomachine:nomachine:4.4.12
-
cpe:2.3:a:nomachine:nomachine:4.4.6
-
cpe:2.3:a:nomachine:nomachine:4.5.0
-
cpe:2.3:a:nomachine:nomachine:4.6.12
-
cpe:2.3:a:nomachine:nomachine:4.6.16
-
cpe:2.3:a:nomachine:nomachine:4.6.18
-
cpe:2.3:a:nomachine:nomachine:4.6.20
-
cpe:2.3:a:nomachine:nomachine:4.6.27
-
cpe:2.3:a:nomachine:nomachine:4.6.3
-
cpe:2.3:a:nomachine:nomachine:5.0.0
-
cpe:2.3:a:nomachine:nomachine:5.0.47
-
cpe:2.3:a:nomachine:nomachine:5.0.58
-
cpe:2.3:a:nomachine:nomachine:5.0.63
-
cpe:2.3:a:nomachine:nomachine:5.1.22
-
cpe:2.3:a:nomachine:nomachine:5.1.24
-
cpe:2.3:a:nomachine:nomachine:5.1.40
-
cpe:2.3:a:nomachine:nomachine:5.1.42
-
cpe:2.3:a:nomachine:nomachine:5.1.62
-
cpe:2.3:a:nomachine:nomachine:5.1.7
-
cpe:2.3:a:nomachine:nomachine:5.2.21
-
cpe:2.3:a:nomachine:nomachine:5.3.12
-
cpe:2.3:a:nomachine:nomachine:5.3.24
-
cpe:2.3:a:nomachine:nomachine:5.3.25
-
cpe:2.3:a:nomachine:nomachine:5.3.9
-
cpe:2.3:a:nomachine:nomachine:6.0.0
-
cpe:2.3:a:nomachine:nomachine:6.0.66
-
cpe:2.3:a:nomachine:nomachine:6.0.78
-
cpe:2.3:a:nomachine:nomachine:6.1.6
-
cpe:2.3:a:nomachine:nomachine:6.1.9
-
cpe:2.3:a:nomachine:nomachine:6.2.4