[German]Just a short information: Kaspersky Secure Mail Gateway had several vulnerabilities, which were closed at the beginning of the month with an update.
Advertising
I don't know if and how many of my blog readers use and administrate the Kaspersky Secure Mail Gateway in corporate environments.
What is Kaspersky Secure Mail Gateway?
This Kaspersky website defines the purpose of Kaspersky Secure Mail Gateway:
Kaspersky Secure Mail Gateway is a fully integrated email system and mail security solution – packed into a single ready-to-use virtual appliance. Based on the popular Kaspersky Secure Mail Gateway, it provides next-generation email protection from known and unknown threats, including spam, phishing and every kind of malicious attachments.
Several vulnerabilities
The vulnerabilities has been already published on seclists.org at the beginning of February. Kaspersky Secure Mail Gateway had several vulnerabilities described in the Security Advisory CORE-2017-0010.
- CVD-2018-6288: Cross-Site Request Forgery [CWE-352],
- CVE-2018-6289,: Improper Neutralization of Special Elements in Output Used by a Downstream Component [CWE-74],
- CVE-2018-6290: Improper Privilege Management [CWE-269],
- CVE-2018-6291: Improper Neutralization of Input During Web Page Generation [CWE-79]
The above vulnerabilities were found in Kaspersky Mail Gateway's web management console. This enabled an attacker to gain remote access to root privileges.
A more detailed description from the Security Advisory CORE-2017-0010, for example, reveals that a backup of the directory: /var/opt/kaspersky/klms/db/passwd with user name, passwords and the profile was included in a compressed archive.
Advertising
This information could be used to overwrite the original password file and gain administrator rights. Further details can be found in the Security Advisory.
Update available since February 2, 2018
Kaspersky addressed the issue on February 1, 2018 (i. e. before publication on seclist.org) in this advisory. The vulnerabilities are contained within Kaspersky Secure Mail Gateway 1.1.1. Kaspersky recommends that all users of Kaspersky Secure Mail Gateway 1.1 be upgraded to Kaspersky Secure Mail Gateway 1.1 MR1.
Advertising
