Infinitt PACS System Arbitrary File Upload Vulnerability Scanner

Infinitt PACS System is a medical imaging and communication system widely used in healthcare facilities to manage and share medical images and patient data. It is designed to provide efficient storage, retrieval, and distribution of medical imaging data, making it a critical component in hospitals and clinics. The system supports seamless integration with other medical devices and systems, facilitating collaborative diagnosis and treatment. Infinitt PACS is trusted for its scalability, high performance, and compliance with healthcare data standards. It enables healthcare professionals to access imaging data remotely, enhancing patient care and operational efficiency. Its robust features make it indispensable for modern medical facilities.

The vulnerability detected in Infinitt PACS System is an arbitrary file upload flaw, allowing attackers to upload malicious files to the server. This vulnerability can be exploited to gain unauthorized access, execute malicious scripts, and compromise system integrity. The scanner detects this vulnerability by analyzing the server's response to file upload requests. Identifying such vulnerabilities is crucial to securing medical data and preventing unauthorized access. Detecting this issue helps administrators remediate the risk and protect sensitive healthcare information. Addressing this vulnerability ensures the system remains compliant with healthcare regulations and data security best practices.

The arbitrary file upload vulnerability is associated with the `WebJobUpload` interface of Infinitt PACS. Attackers can exploit this endpoint by sending specially crafted HTTP POST requests containing malicious file data. The vulnerability arises from insufficient validation of file types and paths, allowing the upload of webshells or executable files. The scanner examines HTTP responses for indicators like specific XML tags and success codes to confirm the vulnerability. This detection process ensures that only valid and exploitable instances of the vulnerability are flagged. By analyzing server behavior, the scanner accurately identifies vulnerable instances of the PACS system.

If exploited, this vulnerability allows attackers to upload and execute malicious files on the server. Such attacks can result in unauthorized access, data theft, and disruption of medical services. The vulnerability also exposes the system to the risk of ransomware attacks, potentially locking critical patient data. Healthcare facilities may face regulatory penalties, financial losses, and reputational damage due to compromised data. Proactively addressing this vulnerability helps secure the system and ensures uninterrupted access to medical imaging services. Implementing proper safeguards mitigates the risk and protects sensitive healthcare information.

REFERENCES

• https://github.com/wy876/POC/blob/a9e4000fc76d0157b53ade916323b7b8256b17c3/%E8%8B%B1%E9%A3%9E%E8%BE%BE%E5%8C%BB%E5%AD%A6%E5%BD%B1%E5%83%8F%E5%AD%98%E6%A1%A3%E4%B8%8E%E9%80%9A%E4%BF%A1%E7%B3%BB%E7%BB%9F/%E8%8B%B1%E9%A3%9E%E8%BE%BE%E5%8C%BB%E5%AD%A6%E5%BD%B1%E5%83%8F%E5%AD%98%E6%A1%A3%E4%B8%8E%E9%80%9A%E4%BF%A1%E7%B3%BB%E7%BB%9FWebJobUpload%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0%E6%BC%8F%E6%B4%9E.md