Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:CVE-2018-1160-OB |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Netatalk dsi_opensession Attention Quantum Out-of-bounds Write |
Release Date |
2019/02/15 |
Update Number |
3142 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: Netatalk dsi_opensession Attention Quantum Out-of-bounds Write
This signature detects attempts to exploit a known vulnerability against Netatalk. Successful exploitation could lead to arbitrary code execution with privileges of the root user.
Extended Description
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.
Affected Products
- Debian debian_linux 9.0
- Netatalk_project netatalk 1.4.99-0.20000927
- Netatalk_project netatalk 1.4.99-0.20001108
- Netatalk_project netatalk 1.5.0
- Netatalk_project netatalk 1.5.1
- Netatalk_project netatalk 1.5.1.1
- Netatalk_project netatalk 1.5.2
- Netatalk_project netatalk 1.5.3.1
- Netatalk_project netatalk 1.5.5
- Netatalk_project netatalk 1.6.0
- Netatalk_project netatalk 1.6.1
- Netatalk_project netatalk 1.6.2
- Netatalk_project netatalk 1.6.3
- Netatalk_project netatalk 1.6.4
- Netatalk_project netatalk 2.0.0
- Netatalk_project netatalk 2.0.1
- Netatalk_project netatalk 2.0.2
- Netatalk_project netatalk 2.0.3
- Netatalk_project netatalk 2.0.4
- Netatalk_project netatalk 2.0.5
- Netatalk_project netatalk 2.1
- Netatalk_project netatalk 2.1.1
- Netatalk_project netatalk 2.1.2
- Netatalk_project netatalk 2.1.3
- Netatalk_project netatalk 2.1.4
- Netatalk_project netatalk 2.1.5
- Netatalk_project netatalk 2.1.6
- Netatalk_project netatalk 2.2
- Netatalk_project netatalk 2.2.1
- Netatalk_project netatalk 2.2.2
- Netatalk_project netatalk 2.2.3
- Netatalk_project netatalk 2.2.4
- Netatalk_project netatalk 2.2.5
- Netatalk_project netatalk 3.0
- Netatalk_project netatalk 3.0.1
- Netatalk_project netatalk 3.0.2
- Netatalk_project netatalk 3.0.3
- Netatalk_project netatalk 3.0.4
- Netatalk_project netatalk 3.0.5
- Netatalk_project netatalk 3.0.6
- Netatalk_project netatalk 3.0.7
- Netatalk_project netatalk 3.0.8
- Netatalk_project netatalk 3.1
- Netatalk_project netatalk 3.1.1
- Netatalk_project netatalk 3.1.10
- Netatalk_project netatalk 3.1.11
- Netatalk_project netatalk 3.1.2
- Netatalk_project netatalk 3.1.3
- Netatalk_project netatalk 3.1.4
- Netatalk_project netatalk 3.1.5
- Netatalk_project netatalk 3.1.6
- Netatalk_project netatalk 3.1.7
- Netatalk_project netatalk 3.1.8
- Netatalk_project netatalk 3.1.9
- Synology diskstation_manager 5.2
- Synology diskstation_manager 5.2-5565
- Synology diskstation_manager 5.2-5565-1
- Synology diskstation_manager 5.2-5565-2
- Synology diskstation_manager 5.2-5592
- Synology diskstation_manager 5.2-5592-1
- Synology diskstation_manager 5.2-5592-2
- Synology diskstation_manager 5.2-5592-3
- Synology diskstation_manager 5.2-5592-4
- Synology diskstation_manager 5.2-5620
- Synology diskstation_manager 5.2-5644
- Synology diskstation_manager 5.2-5644-1
- Synology diskstation_manager 5.2-5644-2
- Synology diskstation_manager 5.2-5644-3
- Synology diskstation_manager 5.2-5644-5
- Synology diskstation_manager 5.2-5644-8
- Synology diskstation_manager 5.2-5967
- Synology diskstation_manager 5.2-5967-1
- Synology diskstation_manager 5.2-5967-2
- Synology diskstation_manager 5.2-5967-3
- Synology diskstation_manager 5.2-5967-4
- Synology diskstation_manager 5.2-5967-5
- Synology diskstation_manager 5.2-5967-6
- Synology diskstation_manager 5.2-5967-7
- Synology diskstation_manager 5.2-5967-8
- Synology diskstation_manager 6.1
- Synology diskstation_manager 6.1.1
- Synology diskstation_manager 6.1.1-15101
- Synology diskstation_manager 6.1.1-15101-1
- Synology diskstation_manager 6.1.1-15101-2
- Synology diskstation_manager 6.1.1-15101-3
- Synology diskstation_manager 6.1.1-15101-4
- Synology diskstation_manager 6.1-15047
- Synology diskstation_manager 6.1-15047-1
- Synology diskstation_manager 6.1-15047-2
- Synology diskstation_manager 6.1.2-15132
- Synology diskstation_manager 6.1.2-15132-1
- Synology diskstation_manager 6.1.3-15152
- Synology diskstation_manager 6.1.3-15152-1
- Synology diskstation_manager 6.1.3-15152-3
- Synology diskstation_manager 6.1.3-15152-4
- Synology diskstation_manager 6.1.3-15152-5
- Synology diskstation_manager 6.1.3-15152-6
- Synology diskstation_manager 6.1.3-15152-7
- Synology diskstation_manager 6.1.3-15152-8
- Synology diskstation_manager 6.1.4-15217
- Synology diskstation_manager 6.1.4-15217-1
- Synology diskstation_manager 6.1.4-15217-2
- Synology diskstation_manager 6.1.4-15217-3
- Synology diskstation_manager 6.1.4-15217-4
- Synology diskstation_manager 6.1.4-15217-5
- Synology diskstation_manager 6.1.6-15266
- Synology diskstation_manager 6.1.7-15284
- Synology diskstation_manager 6.1.7-15284-1
- Synology diskstation_manager 6.1.7-15284-2
- Synology diskstation_manager 6.2
- Synology diskstation_manager 6.2.1
- Synology diskstation_manager 6.2.1-23824
- Synology diskstation_manager 6.2.1-23824-1
- Synology diskstation_manager 6.2.1-23824-2
- Synology diskstation_manager 6.2.1-23824-3
- Synology diskstation_manager 6.2-23739
- Synology diskstation_manager 6.2-23739-1
- Synology diskstation_manager 6.2-23739-2
- Synology router_manager 1.2-7742
- Synology router_manager 1.2-7742-1
- Synology router_manager 1.2-7742-2
- Synology router_manager 1.2-7742-3
- Synology router_manager 1.2-7742-4
- Synology skynas -
- Synology vs960hd_firmware -
References
- BugTraq: 106301
- CVE: CVE-2018-1160