The following request causes an exception in the application logic.Ī stack trace is included in the server's response: HTTP/1.0 500 Internal Server Errorįile "C:\Users\user\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python\Framework\components\runtime.py", line 845, in handle_requestįile "C:\Program Files (x86)\Plex\Plex Media Server\python27.zip\urllib2.py", line 629, in http_error_302 HAM4+jeGlbIaKvPkeXYbAOJS46yogiFUAYZTdpJ6/viS8UyiJPLx WPd9o65yFJtVUEipVWHaPWe/86Y4YhlZbPKAdEwSSdalagEHC9YUnfsB4TOZUb7m +DfPuwKBgBMAgkJiPx+4kuzdMR2+GWQhttLEB64w05pcR4LeXjeO8r7tICo6RZGU M9XA6Q73yLOoIuALU+NjBH+gX9RkwwAE6qP67ZX4IPMOrbIeLfQ3xRRhCSiVsGZWīO5tRf4Z7LQemgxdfa6gwQKBgQC3C圆Bnq2o9wL+ejI264lZANl5zYfCH38lExYsĦhEpsEwjhe6f7VlGPCyt0mdIGzHRHpVZXmJzQ7BqOBd/On3d2NJ+vOMRQ5uhzCM1ĤSPFLXvGr9PB2DC6JS+KfQaCSltITxp9HYNF6tdg2kQdQHCmuNeZ3lZrob3U2kT+ LubY6hJ8OvQfNCnsnJ5/r0qnItIBV8vT5B1qMbmO5GZzrS2hLiSZX6wStanHn3NQĨoEJ7J5eBgWMdxV1Clasg8cXX9DJdX/AEt8E7qa284CiyBP9mieVEJRdslBGgPKAīBBySpu4AO3dToiUFb6zSmGaSp303lrusaC圓EMCgYBx4ic+qdGrwwok3AQi8PUcĤjhEm4drVNSnGdoWkZsCJyqn/Alee2Oa1BuCHQdXghN0W5HBglq0/dwZU6QV6RQh YYQmOqvbr8WXlDQvraiSYDpYhXkHwvBJ5ssTxRW6VG0p6VZKilJfHjECgYEAyA1P TyhT4KNgKkVKGjKtF6AZKwnmMMuoVhsxwoepct/qrNL7rT79m4JMfEH2HWmDbi1G P8guE4ECgYEA0PhaYCs82bN95FksOzZyJqSp5MpFfUrb3+DQnEgIK12WMwY7Mbhl YJI+8pL8l6wJ3iZ3djW2RosWioOf/9iKOU1G+ECb9GwTuY7HzXkQ5WSJRRAmdvepĤTLprE9RXo9oWiJZJUvNrCD5/Gw+D3pRlFoGsG/Txp7UySpAU2RNs9j5LrorTIww JY4sVBficBnZAd64K/nnPYP2n/xp2Ncfhg9eVG0senZUpwjgeZSMj2A8w8l0ZXfPĮKzuMlpz5XI5bKagniIcpw9qtzHSwOBgSedDkOxpiewFqwXdGptXU5xQGhcGEZbY Pg216J2q8BtWVEuTzqFcMYpDZPUKjojqWjS0jH1LbT2kEIl+/nZPdGH4z02+k0dj SeQ60X8xBBgPMcFvDpNkNS0/Kp7+XIff6ukC0wIDAQABAoIBAGG5vhI3UsMyORYa ZSczl2ANngHY4I7BYtrmrtT+1lch2FwJ5dcyGhXhX/+vVzGxYLaetoMmi4gNHKrU T+UZOndHT7GsE72eynJJGA43q6fuyJ5IpPDk0Xr0prvVyePmNvIwAEROd8sEqdgJ WHnH4J3ElSTT/X2O+2rUfELZAnduCWOWHChuhXXUlRchfwjDn4WLXYYYnVh3Rdgj
MIIEowIBAAKCAQEAo0zj2qWd2JuWDSDmBWeDA0luMgPPPZeT8SLf5tzuK5lcvHYj The private key for the "*." certificate: -BEGIN RSA PRIVATE KEY. This enablesĪttackers to retrieve arbitrary content (eg. Sources (wildcard) in cross-server resource sharing (CORS) as well as inĬross-domain policy restrictions (Flash and Silverlight). The Plex Media Server explicitly allows all Quite theĬontrary, security mechanisms that would minimize the extent of CSRF attacksĪre deliberately disabled. The application does not implement any kind of CSRF protection. ThisĪllows an attacker to gain information about the target operating system, Python stack traces are included in the responses for some requests. Unauthenticated information disclosure through stack traces Secrecy (PFS) properties of these KEX ciphers would prevent passive attackersģ. The Plex Media Server seems to offer DHE ciphers (DHE_RSA). Watering-hole-style attack by abusing the reputation of the Plex domain asĪs this mechanism requires the private key to be compromised it should not be This mechanism can be abused by malicious entities to provide services onĪrbitrary IPs via SSL/TLS as well. This enables active attackers to execute SSL MITM attacks as the Services out of the box without prior configuration and using a validįor this to work the corresponding private key has to be included in the This enables all Plex Media Servers to offer SSL/TLS Relative to the IP indicated in the name. The DNS server behind "" is configured to resolve subdomains
#Plex web app software#
The private key for this certificate is included in the Plex software and can That is used is issued by "DigiCert Secure Server CA" which is a commonly The Plex Media Server offers HTTPS access via TCP port 32443. This enables passiveĪttackers to gain access to the session token in order to access the Plex Media The Plex "Remote" functionality uses HTTP as well.
#Plex web app code#
This enablesĪctive attackers (MITM) to run code in the context of the Plex Media Server. The Plex App Store fetches App listings and App code via HTTP. Plain text protocols are used in various places. "Plex is a media player system consisting of a player application with aġ0-foot user interface and an associated media server. Vulnerable version: confirmed in 0.9.9.10 SEC Consult Vulnerability Lab Security Advisory
0 kommentar(er)
