IBM Support

Security Bulletin: Vulnerability in Flexera InstallShield affects FileNet Application Engine, FileNet Integration for Microsoft Office, and FileNet Workplace XT (CVE-2016-2542)

Created by Eric Fonkalsrud on
Published URL:
https://www.ibm.com/support/pages/node/276565
276565

Security Bulletin


Summary

InstallShield generates installation executable files, which are vulnerable to a DLL-planting vulnerability.

Vulnerability Details

CVEID: CVE-2016-2542
DESCRIPTION: Flexera InstallShield can allow a local attacker to gain elevated privileges on the system, caused by an untrusted search path. An attacker can exploit this vulnerability by using a Trojan horse DLL in the current working directory of a setup or launcher executable file to gain elevated privileges on the system.
CVSS Base Score: 7.8
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/110914 for the current score
CVSS Environmental Score*:
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

FileNet Application Engine 4.0.2
FileNet Integration for Microsoft Office 1.1.5
FileNet Workplace XT 1.1.5

Remediation/Fixes

Follow the steps in the "Workarounds and Mitigations" section.

Workarounds and Mitigations

To avoid the untrusted search path vulnerability where users can gain increased privileges, perform the following additional steps prior to installation:

  1. Clear all contents (files, subdirectories, and so on) in the default download directory location.
  2. Create a secure directory in a temporary location, such that elevated privileges are required to access this directory.
  3. Copy and extract the setup.exe executable (generated by InstallShield) to the secure directory created in Step 2.
  4. Launch the setup.exe executable file from the secure directory and wait until it completes.

Important: Do not enter line breaks in the command that you enter to start the installation program.

Get Notified about Future Security Bulletins

Subscribe to My Notifications to be notified of important product support alerts like this.

References

Complete CVSS v2 Guide
On-line Calculator v2

Complete CVSS v3 Guide
On-line Calculator v3

Off

Related Information

IBM Secure Engineering Web Portal
IBM Product Security Incident Response Blog

Change History

Change History
17 April 2016 - Original version published
11 July 2016 - Updated CVE Information
01 August 2016 - Updated product list
28 October 2016 - Added products Application Engine and Workplace XT to this bulletin.

*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.

Internal Use Only

PSIRT product id: 80899 (App Eng), 71065 (FIMO) and 80898 (Workplace XT)

[{"Product":{"code":"SSNVNV","label":"FileNet Content Manager"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Integration for Microsoft Office","Platform":[{"code":"PF033","label":"Windows"}],"Version":"1.1.5","Edition":"All Editions","Line of Business":{"code":"LOB45","label":"Automation"}},{"Product":{"code":"SSNVNV","label":"FileNet Content Manager"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Application Engine","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"4.0.2","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}},{"Product":{"code":"SSNVNV","label":"FileNet Content Manager"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Workplace XT","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"1.1.5","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
17 June 2018

UID

swg21981500

Page Feedback