CVE Vulnerability

CVE-2018-7259

The FSX / P3Dv4 installer 2.0.1.231 for Flight Sim Labs A320-X sends a user's Google account credentials to http://installLog.flightsimlabs.com/LogHandler3.ashx if a pirated serial number has been entered, which allows remote attackers to obtain sensitive information, e.g., by sniffing the network for cleartext HTTP traffic. This behavior was removed in 2.0.1.232.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

Scope

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.reddit.com/r/flightsim/comments/7yh4zu/fslabs_a320_installer_seems_to_include_a_chrome/ Issue Tracking Press/Media Coverage
https://medium.com/@lukegorman97/flightsimlabs-alleged-malware-analysis-1427c4d23368 Permissions Required
https://forums.flightsimlabs.com/index.php?/topic/16210-malware-in-installer/ Issue Tracking
Configurations

Configuration 1

cpe:2.3:a:flightsimlabs:a320-x:2.0.1.231:*:*:*:*:*:*:*
Information

Published : 2018-02-20 12:29

Updated : 2019-10-03 12:03

NVD link : CVE-2018-7259

Mitre link : CVE-2018-7259

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information