You are viewing limited content. For full access, please sign in.

Question

Question

Do Quick Fields, Bar Code, or Agent use KeyWorks KeyHelp?

Quick Fields Version 9 Security Administration
Updated May 1, 2020
asked on February 2, 2015

Our system admin ran a Nessus scan on our Laserfiche installation which revealed a vulnerable ActiveX control on a fresh virtual machine who's only unique properties are housing the QuickFields, QF Barcode, and QF Agent applications.

 

Quick Fields - Version 9.0.0

Quick Fields Barcode - 9.1.0.0

Quick Fields Agent - 9.0

 

Here's the results of the scan:

Synopsis :

The remote host has an ActiveX control installed that has multiple
vulnerabilities.

Description :

The remote host has KeyWorks KeyHelp ActiveX control installed, which
is affected by multiple vulnerabilities :

- Multiple stack-based buffer overflows exist that could
allow an attacker to execute arbitrary code.
(CVE-2012-2515)

- An unspecified command injection vulnerability.
(CVE-2012-2516)

See also :

http://retrogod.altervista.org/9sg_emc_keyhelp.html
http://sotiriu.de/adv/NSOADV-2010-008.txt

Solution :

Remove or disable the control as it is no longer supported.
Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.4
(CVSS2#E:F/RL:W/RC:ND)
Public Exploit Available : true

 

Would someone be able to confirm if this is part of the Quick Fields application set and what impact disabling the control would have?

 

Cheers,

 

Carl

0 0

Answer

SELECTED ANSWER
replied on February 2, 2015

There are no ActiveX controls in Quick Fields.

1 0

Replies

replied on April 28, 2020

Hi @Miruna ,

I have another customer who has asked a similar question. What is KeyWorks KeyHelp ActiveX control used for and can it be removed from the Laserfiche servers?

Regards, 

Ben 

replied on April 28, 2020

Hi @Miruna ,

I have another customer who has asked a similar question. What is KeyWorks KeyHelp ActiveX control used for and can it be removed from the Laserfiche servers?

Regards, 

Ben 

0 0
replied on May 1, 2020

There are no ActiveX controls in LF products. This (very old) vulnerability report indicates that it may be (have been?) part of EMC Captiva which may come bundled with some scanners. I'm not sure why that would be on a server, but Laserfiche most definitely does not use it.

1 0
replied on May 1, 2020

Hi Miruna, 

Thanks very much :) 

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...