JEdit ActiveX Control Information Disclosure vulnerability

CVE	Category	Price	Severity
CVE-2009-0133	CWE-200	$500	High

Author	Risk	Exploitation Type	Date
Anonymous	High	Remote	2006-06-29

CPE
cpe:cpe:/a:jedit:activex

Our sensors found this exploit at: http://cxsecurity.com/ascii/WLB-2006060149

Below is a copy:

JEdit ActiveX Control Information Disclosure vulnerability

Publish Date: July 17, 2006

Status:    SRLabs.net contacted with the vendor at July 7 2006 to request security

contact for sending information about vulnerability but couldn't get any response yet

Vendor: Jaguarsoft (http://www.jaguarsoft.com)

JEdit is a ActiveX Control for IE for anti keylogger purposes. Many banks in Turkey distribute

different builds of JEdit  to users for protection.

SRLabs.net discover an information disclosure vulnerabiltiy in JEdit. An attacker can get those

sensitive information on the wild

- User's Machine Name

- Logged in windows user's name

- User's MAC Address

- User's IP adrress, which is binded user machine's ethernet

- User's Gateway IP adrress, which is binded user machine's ethernet

- User's HDD serial number

Build's affected from this vulnerability:

- Garanti Bankasi / Guvenlik Kalkani

- Anadolu Finans Kurumu / Anadolu Hisari

- Is Bankasi / Guvenlik Cemberi

- Turkishbank / E-Guard

Proof-of concept code can be viewed from http://www.srlabs.net/bulten/source/Jaguar.htm

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum