Vulnerability Details : CVE-2012-4177
Public exploit exists!
The web browser plugin for Ubisoft Uplay PC before 2.0.4 allows remote attackers to execute arbitrary programs via the -orbit_exe_path command line argument.
Exploit prediction scoring system (EPSS) score for CVE-2012-4177
84.85%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2012-4177
-
Ubisoft uplay 2.0.3 ActiveX Control Arbitrary Code Execution
Disclosure Date: 2012-07-29First seen: 2020-04-26exploit/windows/browser/ubisoft_uplay_cmd_execThe uplay ActiveX component allows an attacker to execute any command line action. User must sign in, unless auto-sign in is enabled and uplay must not already be running. Due to the way the malicious executable is served (WebDAV), the module must be run on port 80,
CVSS scores for CVE-2012-4177
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2012-4177
-
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-4177
-
http://seclists.org/fulldisclosure/2012/Jul/375
Full Disclosure: Re: AxMan ActiveX fuzzing <== Memory Corruption PoC
-
http://www.bbc.com/news/technology-19053453
Ubisoft rush to fix security hole exposed by plug-in - BBC News
-
http://www.exploit-db.com/exploits/20321
Ubisoft uplay 2.0.3 - ActiveX Control Arbitrary Code Execution (Metasploit) - Windows remote Exploit
-
http://forums.ubi.com/showthread.php/699940-Uplay-PC-Patch-2-0-4-Security-fix
[Uplay PC] Patch 2.0.4 - Security fix | Forums
Products affected by CVE-2012-4177
- cpe:2.3:a:ubi:uplay_pc:*:*:*:*:*:*:*:*
- cpe:2.3:a:ubi:uplay_pc:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ubi:uplay_pc:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ubi:uplay_pc:2.0.1:*:*:*:*:*:*:*