FrSIRT - Macrovision InstallAnywhere Service Installation Password and Serial Bypass Weakness / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Macrovision InstallAnywhere Service Installation Password and Serial Bypass Weakness

Title : Macrovision InstallAnywhere Service Installation Password and Serial Bypass Weakness
Advisory ID : FrSIRT/ADV-2007-1433
CVE ID : CVE-2007-1009
Rated as : Low Risk

Remotely Exploitable : No
Locally Exploitable : Yes
Release Date : 2007-04-18

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A weakness has been identified in Macrovision InstallAnywhere, which could be exploited by malicious users to bypass security checks. This issue is caused by an error within the serial number and password validation process, which could be exploited by malicious users to install an application without a valid password or serial number by manipulating the "InstallScript.iap_xml" XML project configuration file.

Credits

Vulnerability reported by Brian Reilly (Symantec)

ChangeLog

2007-04-18 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Sun Solaris ACL UFS File Systems Denial of Service Vulnerability
	Sun Solaris Text Editors Tag Files Local Code Execution Vulnerability
	Sun Management Center Remote Denial of Service Vulnerability
	Sun Solaris Bzip2 Archive Handling Denial of Service Vulnerability
	Sun Solaris GNU Tar Headers Handling Buffer Overflow Vulnerability
	Sun Solaris Covert Channel Local Security Bypass Vulnerability
	Sun Solaris NFS RPC Zone Denial of Service Vulnerability

	Oracle Products Multiple Code Execution and Security Bypass Issues
	Oracle Products Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

	Apple TV Multiple File Processing Code Execution Vulnerabilities
	Apple Mac OS X Code Execution and Security Bypass Vulnerabilities
	Apple iPhone Code Execution and Security Bypass Vulnerabilities
	Apple QuickTime Multiple Remote Code Execution Vulnerabilities
	Apple iTunes Driver Integer Overflow Privilege Escalation Vulnerability
	Apple iPod touch Code Execution and Security Bypass Vulnerabilities
	Apple Bonjour for Windows DNS Spoofing and DoS Vulnerabilities