CVE-2018-1160

Опубликовано: 20 дек. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Высокий

Описание

Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.

Ссылки

http://netatalk.sourceforge.net/3.1/ReleaseNotes3.1.12.html
Release Notes
http://packetstormsecurity.com/files/152440/QNAP-Netatalk-Authentication-Bypass.html
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/106301
Third Party Advisory
VDB Entry
https://attachments.samba.org/attachment.cgi?id=14735
Third Party Advisory
https://github.com/tenable/poc/tree/master/netatalk/cve_2018_1160/
Release Notes
Third Party Advisory
https://www.debian.org/security/2018/dsa-4356
Third Party Advisory
https://www.exploit-db.com/exploits/46034/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46048/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46675/
Exploit
Third Party Advisory
VDB Entry
https://www.synology.com/security/advisory/Synology_SA_18_62
Third Party Advisory
https://www.tenable.com/security/research/tra-2018-48
Exploit
Release Notes
Third Party Advisory
http://netatalk.sourceforge.net/3.1/ReleaseNotes3.1.12.html
Release Notes
http://packetstormsecurity.com/files/152440/QNAP-Netatalk-Authentication-Bypass.html
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/106301
Third Party Advisory
VDB Entry
https://attachments.samba.org/attachment.cgi?id=14735
Third Party Advisory
https://github.com/tenable/poc/tree/master/netatalk/cve_2018_1160/
Release Notes
Third Party Advisory
https://www.debian.org/security/2018/dsa-4356
Third Party Advisory
https://www.exploit-db.com/exploits/46034/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46048/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46675/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netatalk:netatalk:*:*:*:*:*:*:*:*

Версия до 3.1.12 (исключая)

Конфигурация 2

Одно из

cpe:2.3:a:synology:router_manager:*:*:*:*:*:*:*:*

Версия от 1.2 (включая) до 1.2-7742-5 (исключая)

cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*

cpe:2.3:o:synology:diskstation_manager:*:*:*:*:*:*:*:*

Версия от 5.2 (включая) до 5.2-5967-9 (исключая)

cpe:2.3:o:synology:diskstation_manager:*:*:*:*:*:*:*:*

Версия от 6.1 (включая) до 6.1.7-15284-3 (исключая)

cpe:2.3:o:synology:diskstation_manager:*:*:*:*:*:*:*:*

Версия от 6.2 (включая) до 6.2.1-23824-4 (исключая)

Конфигурация 3

Одновременно

cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*

Конфигурация 4

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.89732

Высокий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2018-1160

CVSS3: 9.8

ubuntu

около 7 лет назад

CVE-2018-1160

CVSS3: 9.8

debian

около 7 лет назад

Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_ ...

openSUSE-SU-2018:4287-1

suse-cvrf

около 7 лет назад

Security update for netatalk

SUSE-SU-2018:4217-1

suse-cvrf

около 7 лет назад

Security update for netatalk

SUSE-SU-2018:4214-1

suse-cvrf

около 7 лет назад

Security update for netatalk

EPSS

Процентиль: 100%

0.89732

Высокий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-787