#VU1062 Privilege escalation in Synology NAS Servers - CVE-2016-6554

Cybersecurity Help s.r.o.

Published: 2016-10-21 | Updated: 2016-10-24

Vulnerability identifier: #VU1062

Vulnerability risk: Low

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-6554

CWE-ID: CWE-255

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Synology NAS Servers
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: Synology Inc.

Description
The vulnerability allows a remote unauthenticated user to bypass security limitations and gain elevated privileges on the target system.
The weakness exists due to improper protection of credentials. By accessing the server with default credentials, attacker can bypass security limitations and increase his privileges.
Successful exploitation of the vulnerability results in privilege escalation and full access to the vulnerable system.

Mitigation
Update to version 5.2-5644 -1.

Vulnerable software versions

Synology NAS Servers: 3.1 - 5.2-5644-1

External links
http://www.kb.cert.org/vuls/id/404187

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Privilege escalation in Synology NAS Servers