Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DocLink .NET Remoting Unauthenticated Arbitrary File Read/Write RCE
Vulnerability Description
Altec DocLink (now maintained by Beyond Limits Inc.) version 4.0.336.0 exposes insecure .NET Remoting endpoints over TCP and HTTP/SOAP via Altec.RDCHostService.exe using the ObjectURI "doclinkServer.soap". The service does not require authentication and is vulnerable to unsafe object unmarshalling, allowing remote attackers to read arbitrary files from the underlying system by specifying local file paths. Additionally, attackers can coerce SMB authentication via UNC paths and write arbitrary files to server locations. Because writable paths may be web-accessible under IIS, this can result in unauthenticated remote code execution or denial of service through file overwrite.
CVSS Information
N/A
Vulnerability Type
可信数据的反序列化
Vulnerability Title
Beyond Limits DocLink 代码问题漏洞
Vulnerability Description
Beyond Limits DocLink是美国Beyond Limits公司的一个文档管理与流程自动化软件。 Beyond Limits DocLink 4.0.336.0版本存在代码问题漏洞,该漏洞源于不安全的.NET Remoting端点无需身份验证且存在不安全的对象反序列化,可能导致远程攻击者读取任意文件、强制SMB身份验证或写入任意文件,进而导致未经身份验证的远程代码执行或拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A