SimpleHelp Remote Support Software Path Traversal Vulnerability Allowing Arbitrary File Download

A path traversal vulnerability has been identified in SimpleHelp remote support software versions 5.5.7 and prior. This vulnerability allows unauthenticated remote attackers to download arbitrary files from the SimpleHelp host by sending crafted HTTP requests. The downloaded files may include sensitive server configuration files containing various secrets and hashed user passwords.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive configuration files, exposing hashed passwords for user accounts, including the administrator account. This could allow an attacker to log into the SimpleHelp server, potentially with administrative privileges, and access connected client machines or compromise the server itself.

Remediation

Users are advised to upgrade to SimpleHelp version 5.5.8 or later. Instructions for upgrading are available on the SimpleHelp website. For users on version 5.4, a specific patch is available, and for those on version 5.3, a different patch is also accessible. After upgrading, it is recommended to change passwords for the administrator and technician accounts, restrict login IP addresses, and create server event alerts for critical actions.