CVE-2018-7259

Опубликовано: 20 фев. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 5

EPSS Низкий

Описание

The FSX / P3Dv4 installer 2.0.1.231 for Flight Sim Labs A320-X sends a user's Google account credentials to http://installLog.flightsimlabs.com/LogHandler3.ashx if a pirated serial number has been entered, which allows remote attackers to obtain sensitive information, e.g., by sniffing the network for cleartext HTTP traffic. This behavior was removed in 2.0.1.232.

Ссылки

https://forums.flightsimlabs.com/index.php?/topic/16210-malware-in-installer/
Issue Tracking
https://medium.com/%40lukegorman97/flightsimlabs-alleged-malware-analysis-1427c4d23368
https://www.reddit.com/r/flightsim/comments/7yh4zu/fslabs_a320_installer_seems_to_include_a_chrome/
Issue Tracking
Press/Media Coverage
https://forums.flightsimlabs.com/index.php?/topic/16210-malware-in-installer/
Issue Tracking
https://medium.com/%40lukegorman97/flightsimlabs-alleged-malware-analysis-1427c4d23368
https://www.reddit.com/r/flightsim/comments/7yh4zu/fslabs_a320_installer_seems_to_include_a_chrome/
Issue Tracking
Press/Media Coverage

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:flightsimlabs:a320-x:2.0.1.231:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00182

Низкий

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-319

Связанные уязвимости

GHSA-7338-ggw3-p5g2