Credential coercion
Hanley described the failings as credential coercion points as a result of they may enable unauthenticated attackers to coerce the Ivanti EPM machine account credential for use in NTLM relay assaults, which might in flip lead to server compromise.
Ivanti EPM is an asset monitoring and administration resolution for enterprises that may handle a wide range of desktop and cellular units. The server element is an utility written in .NET that exposes varied API endpoints.
Hanley discovered that the enter to a number of unauthenticated API endpoints was not correctly sanitized and may very well be used to move UNC absolute paths to a number of strategies: GetHashForFile, GetHashForSingleFile, GetHashForWildcard and GetHashForWildcardRecursive — all of which needed to do with acquiring hashes for information in specified directories.
