Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
BID:107005
CVE-2018-3989 | CVE-2018-3990 | CVE-2018-3991 |Info
Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 107005 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-3990 CVE-2018-3991 CVE-2018-3989 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Feb 12 2019 12:00AM |
| Updated: | Feb 12 2019 12:00AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
WIBU-SYSTEMS AG WibuKey 0 Siemens SICAM 230 7.20 Siemens SICAM 230 0 |
| Not Vulnerable: |
WIBU-SYSTEMS AG WibuKey 6.50 |
Discussion
Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
Wibu Systems WibuKey Digital Rights Management is prone to multiple input-validation vulnerabilities.
Attackers can exploit these issues to obtain sensitive information, to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition.
WibuKey versions prior to 6.50 are vulnerable.
Wibu Systems WibuKey Digital Rights Management is prone to multiple input-validation vulnerabilities.
Attackers can exploit these issues to obtain sensitive information, to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition.
WibuKey versions prior to 6.50 are vulnerable.
Exploit / POC
Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
References:
References:
- Siemens Homepage (Siemens)
- WibuKey Homepage (Wibu Systems)
- Advisory (ICSA-19-043-03) Siemens Licensing Software for SICAM 230 ()