Secunia Security Advisory - Some vulnerabilities have been reported in ATEN KH1516i and KN9116, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, and potentially compromise a user's system.
b39f41c9a4c086e077bb80288855f85b28c215235ff71674949bb7ff7cbd3780
----------------------------------------------------------------------
Do you have VARM strategy implemented?
(Vulnerability Assessment Remediation Management)
If not, then implement it through the most reliable vulnerability
intelligence source on the market.
Implement it through Secunia.
For more information visit:
http://secunia.com/advisories/business_solutions/
Alternatively request a call from a Secunia representative today to
discuss how we can help you with our capabilities contact us at:
sales@secunia.com
----------------------------------------------------------------------
TITLE:
ATEN KH1516i / KN9116 Multiple Vulnerabilities
SECUNIA ADVISORY ID:
SA35241
VERIFY ADVISORY:
http://secunia.com/advisories/35241/
DESCRIPTION:
Some vulnerabilities have been reported in ATEN KH1516i and KN9116,
which can be exploited by malicious people to disclose sensitive
information, manipulate certain data, and potentially compromise a
user's system.
1) An error exists in the key exchange process when negotiating a
symmetric session key via RSA. This can be exploited extract the
session key by intercepting traffic and e.g. potentially execute
arbitrary code on connected machines via MitM (Man-in-the-Middle)
attacks.
2) Mouse events are transferred between a client and the KVM switch
via an unencrypted data channel. This can be exploited to inject e.g.
arbitrary mouse clicks via MitM (Man-in-the-Middle) attacks.
3) The web interface session cookie does not contain the "Secure"
attribute. This can be exploited to obtain the cookie and potentially
gain access to connected machines by redirecting the user's browser to
a HTTP connection.
The vulnerabilities are reported in KH1516i and KN9116. Other
products may also be affected.
SOLUTION:
Use the products in trusted networks only.
PROVIDED AND/OR DISCOVERED BY:
Jakob Lell from the TU Berlin computer security working group
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------