exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

DTE Axiom Mobile Solution Information Disclosure

DTE Axiom Mobile Solution Information Disclosure
Posted Sep 8, 2012
Authored by Tomas Rzepka

Advanced Productivity Software DTE Axiom Mobile Solution versions prior to 12.3.3 suffer from a vulnerability that can cause customers loss of sensitive data, such as usernames, customer relations and projects.

tags | advisory, info disclosure
advisories | CVE-2012-2455
SHA-256 | 45feba889e3a266ddc4226ac58dc5abd5f25aae96c01e52e24aa6aa0cfb48427

DTE Axiom Mobile Solution Information Disclosure

Change Mirror Download
Release date: 2012-09-06
Discovered by: Tomas Rzepka, Certezza AB, http://www.certezza.net
Vendor: Advanced Productivity Software (http://www.aps-soft.com)
Versions Affected: Versions prior 12.3.3
Type: Authentication
Severity: High
CVSS Base Score: 8.5 (AV:N/AC:L/Au:N/C:C/I:P/A:N)
CVE: CVE-2012-2455

----------------
Description
----------------
In a penetration test we discovered a security flaw in DTE Axiom Mobile Solution.
The security vulnerability can cause customers loss of sensitive data, such as usernames, customer relations and projects.

Advanced Productivity Software DTE Axiom has a server application that can be published on the Internet to give users of iPhone/iPad and Black Berry access to the time tracking system. User is deployed by enabling the feature on each user in the backend administration. The user gets an e-mail from the system which contains two links. One link to download the application (from Apple AppStore). The other link is to feed the smart phone application with configuration such as server address, username, database and registration ID (GUID). The application communicates with the server over HTTPS.

Although the application has a registration ID to identify each device it is never used. By posting applicable HTTP parameters to the application server, anyone with knowledge how the application works can extract and alter information about users, customers, projects, etc., without being authenticated to the server. We only had access to an iPhone/iPad device so we could not test the Black Berry functionality and it does not use the same API. The security issue does not exist in the Black Berry API according to the vendor.

----------------
Mitigation
----------------
Vendor has released a new version (12.3.3) which fixes this specific issue.

----------------
Timeline
----------------
2012-05-07: Vendor disclosures
2012-05-07: Vendor response
2012-09-04: Fix released
2012-09-06: Public disclosure


Login or Register to add favorites

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close