Missing Digital Signature from Configuration Block
Published: May 11, 2018 | Last Updated: Sep 24, 2020
Absolute Computrace Agent V80.845 and V80.866 does not have a digital signature for the configuration block, which allows attackers to set up communication with a web site other than the intended search.namequery.com site by modifying data within a disk's inter-partition space. This allows a privileged local user to execute arbitrary code even after that user loses access and all disk partitions are reformatted.
|Product||Platform||Fix Versions||Fix Version Release Date|
|Rpcnet.exe v857 and earlier||Windows OS||944||Feb 1, 2011|
|Rpcnetp.exe v957 and earlier||Windows BIOS||961||Jul 14, 2017|
Agent versions referenced above have addressed the security concerns by authenticating the server as part of establishing secure communications. With the above security updates, the vulnerability is limited to an administrator on the device interrupting communications to Absolute systems.
N/ARead more about NIST CVE-2009-5150
What is the Absolute Agent (formerly Absolute Computrace Agent)?
The Absolute Computrace Agent is a piece of software that is packaged with Absolute’s Persistence technology embedded in over 1 Billion devices. The agent provides for visibility and control of the device by creating a digital tether between the device, and the Absolute Monitoring Center.
How can I check the Absolute agent version deployed on my device?
Log into the Absolute console and go to Assets > Devices. In the report, go to the settings area and edit columns in the report to show the Agent column. This column will report on the version of the agent that is deployed to devices under Absolute management.
My Absolute Agent is reporting an older version - How can I update the Absolute Agent?
Absolute manages the agent upgrade process as part of our service. If your device is regularly calling into the Absolute Monitoring Center then the upgrade to our latest agent will happen automatically. If you are still seeing an outdate agent on a device under management, contact the Absolute support team for assistance.
Disclaimer: The information provided in the Absolute Knowledge Base is provided "as is" without warranty of any kind. Absolute disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Absolute Software or its partners be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Absolute Software or its partners have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.