NetSupport Manager Weak Password Encoding Vulnerability Allowing Unauthorized Access

A vulnerability exists in NetSupport Manager versions prior to 14.12.0001, where the application relies on a shared Gateway Key for authentication across its Manager, Control, Client, and Connectivity Server components. This key is stored using a reversible encoding method, creating a security risk. An attacker with access to a client configuration file can decode the encoded value to retrieve the plaintext Gateway Key. Once obtained, this key enables unauthorized access to NetSupport Manager's connectivity services, allowing remote control of systems managed under the same key.

Impact

Exploitation of this vulnerability could lead to unauthorized access to NetSupport Manager's connectivity services and remote control of affected systems.

Reproduction

To reproduce this vulnerability, access a deployed NetSupport Manager client configuration file. The encoded Gateway Key can be found in the 'client32.ini' file. Once the file is obtained, decode the encoded key to retrieve the plaintext Gateway Key. This key can then be used to access the NetSupport Manager Connectivity Server, which is typically exposed to the internet on TCP port 443.

Remediation

NetSupport has released a patch in version 14.12.0001. Users should update their NetSupport Manager Gateways, Controls, and Clients to this version. Instructions for updating can be found on the NetSupport Knowledgebase.