Security Advisory

Dr.Soft NetClient6 Product Security Update Advisory

  • Jan 04 2024

Overview

 

Dr.Soft has released a security update to fix vulnerabilities in Netclient6.

 

Attackers could exploit the vulnerability to cause damage, including malware infection, and users of the product are advised to update to the latest version.

 

 

Affected Products

 

NetClient6 6.6.x through 6.8.x packages

 

 

Resolved Vulnerabilities

 

Remote code execution vulnerability in Dr.Soft Netclient6

 

 

Vulnerability Patches

 

NetClient6 6.9.0 or later

 

 

Referenced Sites

 

For companies and organizations using Dr.Soft NetClient6 products, please update through Dr.Soft.

 

– If you are running an affected version of the NetClient6 product on an external network, please contact us using the contact information below to take urgent action

 

 

Other Questions

 

Dr.Soft : 070-4395-2241

 

 

Reference Site

 

[1] Dr.Soft NetClient6 Product Security Update Advisory

https://www.krcert.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000133&searchWrd=&menuNo=205020&pageIndex=1&categoryCode=&nttId=71277

 

[2] Dr.Soft

https://www.doctorsoft.co.kr/

 

[3] Andariel attack group using NetClient6, a domestic asset management program

https://atip.ahnlab.com/intelligence/view?id=e05acbd8-2061-4810-8b6a-feec91815b1f

 

[4] NetClient6 Authentication Bypass and Remote Command Execution (KVE-2023-7015) Vulnerability Analysis Report

https://atip.ahnlab.com/intelligence/view?id=113cc6be-e13c-450f-9787-420f8d1c490e 

Previous Post

Next Post