CVE-2022-40608 IBM Spectrum Protect Plus could be affected by a vulnerability that allows a directory traversal attack to download any file on the target machine.

This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215. Microsoft Windows Server 2016 Microsoft Windows Server 2016 provides a mechanism to protect the server from unauthorized content downloads via the Windows Server 2016 Server feature called Controlled Folder Access. This feature allows the server to limit the types of files which can be downloaded from the network. This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215. Microsoft Windows 10 Microsoft has provided a mechanism in Windows 10 to protect against the remote downloading of content by default. This can be disabled by the server operator by enabling the Allow remote installation of software via the Windows Registry. This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215. Microsoft Windows 7 Microsoft Windows 7 has provided a mechanism in the form of Group Policy to enable the server operator to enable or disable the Remote Access feature. This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215. Microsoft Windows Vista Microsoft Windows Vista has provided a mechanism in the form of Group Policy to enable the server operator to enable or disable the Remote Access feature

Microsoft Windows Server 2012

Microsoft Windows Server 2012 provides a mechanism to protect the server from unauthorized content downloads via the Windows Server 2012 Server feature called Controlled Folder Access. This feature allows the server to limit the types of files which can be downloaded from the network. This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215.

Windows Vista - Disable Remote Access

To disable Remote Access on a Windows Vista system, access the Group Policy Editor. Go to Administrative Templates > Windows Components > Windows Explorer. Enable or disable the Remote Access feature and click OK to save your changes.
This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215.

Microsoft Windows XP SP2 and earlier

Microsoft Windows XP SP2 and earlier has provided a mechanism in the form of Group Policy to enable the server operator to enable or disable the Remote Access feature.

Timeline

Published on: 09/19/2022 18:15:00 UTC
Last modified on: 09/21/2022 17:44:00 UTC

References

• https://exchange.xforce.ibmcloud.com/vulnerabilities/235873
• https://www.ibm.com/support/pages/node/6620209
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-40608