Executive Summary

Summary
Title Artiva Agency Single Sign-On (SSO) feature vulnerability
Informations
Name VU#215284 First vendor Publication 2014-04-14
Vendor VU-CERT Last vendor Modification 2014-04-14
Severity (Vendor) N/A Revision M

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:S/C:P/I:N/A:N)
Cvss Base Score 3.5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Medium
Cvss Expoit Score 6.8 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerability Note VU#215284

Artiva Agency Single Sign-On (SSO) feature vulnerability

Original Release date: 14 Apr 2014 | Last revised: 14 Apr 2014

Overview

Artiva Agency Single Sign-On (SSO) feature checks only the local Windows login name which could allow an attacker to impersonate another Artiva Agency user.

Description

Artiva Agency Single Sign-On (SSO) feature when configured with the domain name option allows the currently logged on Windows user to automatically be logged into the Artiva Agency application using the same username without any additional authentication. Artiva Agency Single Sign-On (SSO) checks only the local Window login name and as a result does not take into consideration the associated user's domain name. By creating a local Windows user account with the same username as a Windows domain account, Artiva Agency will allow the attacker to login as the domain account to the Artiva Agency application.

Impact

An unauthenticated Artiva Agency user can create a local Windows user account with the same username as a Windows domain account and Artiva Agency will allow the attacker to login as the domain account to the Artiva Agency application.

Solution

Update

The vendor has released an update to address this vulnerability. Affected users are advised to update to Artiva Workstation 1.3.9 or later. The vendor has stated that additional setup work in the Artiva application is required.

Vendor Information (Learn More)

It has been reported to us that this vulnerability affects the following Artiva line products and versions:

    Artiva Rm 3.1 MR7 or newer
    Artiva Healthcare 5.2 MR5 or newer
    Artiva Architect 3.2 MR5 or newer
    Workstation 1.3.0 or newer

VendorStatusDate NotifiedDate Updated
Ontario SystemsUnknown23 Jan 201423 Jan 2014
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

GroupScoreVector
Base1.5AV:L/AC:M/Au:S/C:P/I:N/A:N
Temporal1.2E:F/RL:OF/RC:C
Environmental0.5CDP:L/TD:L/CR:ND/IR:ND/AR:ND

References

  • http://www.ontariosystems.com/products/artiva

Credit

Thanks to the reporter that wishes to remain anonymous.

This document was written by Michael Orlando.

Other Information

  • CVE IDs:CVE-2014-0348
  • Date Public:01 Apr 2014
  • Date First Published:14 Apr 2014
  • Date Last Updated:14 Apr 2014
  • Document Revision:12

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Original Source

Url : http://www.kb.cert.org/vuls/id/215284

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-287 Improper Authentication

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Application 1
Application 1
Application 1

Alert History

If you want to see full details history, please login or register.
0
1
2
Date Informations
2014-04-16 13:27:43
  • Multiple Updates
2014-04-15 17:23:36
  • Multiple Updates
2014-04-14 17:19:22
  • First insertion