We have moved at community.getvera.com

Author Topic: Security vulnerability: Plugin developers might be able to access your Vera  (Read 1374 times)

Offline andreyklinger

  • Newbie
  • *
  • Posts: 13
  • Karma: +1/-0
I have sent the details to MCV support today.

Owners of some plugins can access your Vera UI if you use remote access: fwdX.mios.com/remote/1.5.622-en/...

While I hope none of the plugin developers are evil, do know that of them have the option...

P.S. tested on 1.5.622, I don't know if UI6 & UI7 are vulnerable too.


Offline futzle

  • Beta Testers
  • Master Member
  • *****
  • Posts: 3260
  • Karma: +192/-9
Re: Security vulnerability: Plugin developers might be able to access your Vera
« Reply #1 on: September 10, 2014, 08:06:21 am »
Oh god, I see it.  It's similar to an attack vector that I tried on myself as a proof-of-concept a couple of years ago, but it's even simpler and more facepalm-y.

Edit: I'm not sure that this vulnerability is exploitable, TBH.  Unless users are crazy enough to forward port 80 to the public Internet (hello, two users with Embratel Brazil and Virgin Media UK as your ISP, I'm looking at you).
« Last Edit: September 10, 2014, 06:23:37 pm by futzle »

Offline andreyklinger

  • Newbie
  • *
  • Posts: 13
  • Karma: +1/-0
Re: Security vulnerability: Plugin developers might be able to access your Vera
« Reply #2 on: September 11, 2014, 02:02:10 am »
It is exploitable if the plugin developer does something extra.