[Security-announce] VMSA-2018-0015 VMware AirWatch Agent updates resolve remote code execution vulnerability.

VMware Security Announcements security-announce at lists.vmware.com
Mon Jun 11 09:35:07 PDT 2018


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
                        VMware Security Advisory

Advisory ID: VMSA-2018-0015
Severity:    Critical
Synopsis:    VMware AirWatch Agent updates resolve remote code
             execution vulnerability.
Issue date:  2018-06-11
Updated on:  2018-06-11 (Initial Advisory)
CVE number:  CVE-2018-6968

1. Summary

   VMware AirWatch Agent updates resolve remote code execution
   vulnerability.

2. Relevant Products

   VMware AirWatch Agent for Android (A/W Agent)
   VMware AirWatch Agent for Windows Mobile (A/W Agent)

3. Problem Description

   The VMware AirWatch Agent for Android and Windows Mobile devices
   contain a remote code execution vulnerability in real time
   File Manager capabilities. This vulnerability may allow for
   unauthorized creation and execution of files in the Agent sandbox and
   other publicly accessible directories such as those on the SD card by
   a malicious administrator.

   The Common Vulnerabilities and Exposures project (cve.mitre.org) has
   assigned the identifier CVE-2018-6968 to this issue.

   Column 5 of the following table lists the action required to
   remediate the vulnerability in each release, if a solution is
   available.

   VMware      Product   Running           Replace with/     Mitigation/
   Product     Version   on      Severity  Apply Patch       Workaround
   =========== ========= ======= ========= ================= ==========
   A/W Agent   x.x       Android Critical  8.2*              None
   A/W Agent   x.x       iOS     N/A       Unaffected        None
   A/W Agent   x.x       WinMo   Critical  6.5.2*            None

   *These updates will effectively disable File and Registry Management
   capabilities. For more information please see: 
   https://support.workspaceone.com/articles/360005681594

4. Solution

   VMware AirWatch Agent for Android 8.2
   Downloads and Documentation:
   https://play.google.com/

   VMware AirWatch Agent for Windows Mobile 6.5.2
   https://support.workspaceone.com/articles/360005681594

5. References

   https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6968
   https://support.workspaceone.com/articles/360005681594

- ------------------------------------------------------------------------

6. Change log

   2018-06-11: Initial security advisory in conjunction with the release
   of VMware AirWatch Agent for Android 8.2 and VMware AirWatch Agent
   for Windows Mobile 6.5.2.

- ------------------------------------------------------------------------

7. Contact

   E-mail list for product security notifications and announcements:
   http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce

   This Security Advisory is posted to the following lists:

    security-announce at lists.vmware.com
    bugtraq at securityfocus.com
    fulldisclosure at seclists.org

   E-mail: security at vmware.com
   PGP key at: https://kb.vmware.com/kb/1055

   VMware Security Advisories
   http://www.vmware.com/security/advisories

   VMware Security Response Policy
   https://www.vmware.com/support/policies/security_response.html

   VMware Lifecycle Support Phases
   https://www.vmware.com/support/policies/lifecycle.html
 
   VMware Security & Compliance Blog   
   https://blogs.vmware.com/security

   Twitter
   https://twitter.com/VMwareSRC

   Copyright 2018 VMware Inc. All rights reserved.
-----BEGIN PGP SIGNATURE-----

iF0EARECAB0WIQSmJMaUX5+xuU/DnNwMRybxVuL2QwUCWx6kawAKCRAMRybxVuL2
Q2caAKDweYSMBw4jaL5YvoXD4Hidsez7fQCgnZIuG5P6gBGQxMgoUj999tMMJHs=
=FO3r
-----END PGP SIGNATURE-----



More information about the Security-announce mailing list