Vulnerability Details CVE-2018-1160
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.889
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://netatalk.sourceforge.net/3.1/ReleaseNotes3.1.12.html
- http://packetstormsecurity.com/files/152440/QNAP-Netatalk-Authentication-Bypass.html
- http://www.securityfocus.com/bid/106301
- https://attachments.samba.org/attachment.cgi?id=14735
- https://github.com/tenable/poc/tree/master/netatalk/cve_2018_1160/
- https://www.debian.org/security/2018/dsa-4356
- https://www.exploit-db.com/exploits/46034/
- https://www.exploit-db.com/exploits/46048/
- https://www.exploit-db.com/exploits/46675/
- https://www.synology.com/security/advisory/Synology_SA_18_62
- https://www.tenable.com/security/research/tra-2018-48
- http://netatalk.sourceforge.net/3.1/ReleaseNotes3.1.12.html
- http://packetstormsecurity.com/files/152440/QNAP-Netatalk-Authentication-Bypass.html
- http://www.securityfocus.com/bid/106301
- https://attachments.samba.org/attachment.cgi?id=14735
- https://github.com/tenable/poc/tree/master/netatalk/cve_2018_1160/
- https://www.debian.org/security/2018/dsa-4356
- https://www.exploit-db.com/exploits/46034/
- https://www.exploit-db.com/exploits/46048/
- https://www.exploit-db.com/exploits/46675/
- https://www.synology.com/security/advisory/Synology_SA_18_62
- https://www.tenable.com/security/research/tra-2018-48
Products affected by CVE-2018-1160
-
cpe:2.3:a:netatalk:netatalk:-
-
cpe:2.3:a:netatalk:netatalk:1.4.99-0.20000927
-
cpe:2.3:a:netatalk:netatalk:1.4.99-0.20001108
-
cpe:2.3:a:netatalk:netatalk:1.5.0
-
cpe:2.3:a:netatalk:netatalk:1.5.1
-
cpe:2.3:a:netatalk:netatalk:1.5.1.1
-
cpe:2.3:a:netatalk:netatalk:1.5.2
-
cpe:2.3:a:netatalk:netatalk:1.5.3.1
-
cpe:2.3:a:netatalk:netatalk:1.5.5
-
cpe:2.3:a:netatalk:netatalk:1.6.0
-
cpe:2.3:a:netatalk:netatalk:1.6.1
-
cpe:2.3:a:netatalk:netatalk:1.6.2
-
cpe:2.3:a:netatalk:netatalk:1.6.3
-
cpe:2.3:a:netatalk:netatalk:1.6.4
-
cpe:2.3:a:netatalk:netatalk:2.0.0
-
cpe:2.3:a:netatalk:netatalk:2.0.1
-
cpe:2.3:a:netatalk:netatalk:2.0.2
-
cpe:2.3:a:netatalk:netatalk:2.0.3
-
cpe:2.3:a:netatalk:netatalk:2.0.4
-
cpe:2.3:a:netatalk:netatalk:2.0.5
-
cpe:2.3:a:netatalk:netatalk:2.1
-
cpe:2.3:a:netatalk:netatalk:2.1.1
-
cpe:2.3:a:netatalk:netatalk:2.1.2
-
cpe:2.3:a:netatalk:netatalk:2.1.3
-
cpe:2.3:a:netatalk:netatalk:2.1.4
-
cpe:2.3:a:netatalk:netatalk:2.1.5
-
cpe:2.3:a:netatalk:netatalk:2.1.6
-
cpe:2.3:a:netatalk:netatalk:2.2
-
cpe:2.3:a:netatalk:netatalk:2.2.1
-
cpe:2.3:a:netatalk:netatalk:2.2.10
-
cpe:2.3:a:netatalk:netatalk:2.2.2
-
cpe:2.3:a:netatalk:netatalk:2.2.3
-
cpe:2.3:a:netatalk:netatalk:2.2.4
-
cpe:2.3:a:netatalk:netatalk:2.2.5
-
cpe:2.3:a:netatalk:netatalk:2.2.6
-
cpe:2.3:a:netatalk:netatalk:2.2.7
-
cpe:2.3:a:netatalk:netatalk:2.2.7b
-
cpe:2.3:a:netatalk:netatalk:2.2.8
-
cpe:2.3:a:netatalk:netatalk:2.2.9
-
cpe:2.3:a:netatalk:netatalk:2.2.9b
-
cpe:2.3:a:netatalk:netatalk:2.4.1
-
cpe:2.3:a:netatalk:netatalk:3.0
-
cpe:2.3:a:netatalk:netatalk:3.0.1
-
cpe:2.3:a:netatalk:netatalk:3.0.2
-
cpe:2.3:a:netatalk:netatalk:3.0.3
-
cpe:2.3:a:netatalk:netatalk:3.0.4
-
cpe:2.3:a:netatalk:netatalk:3.0.5
-
cpe:2.3:a:netatalk:netatalk:3.0.6
-
cpe:2.3:a:netatalk:netatalk:3.0.7
-
cpe:2.3:a:netatalk:netatalk:3.0.8
-
cpe:2.3:a:netatalk:netatalk:3.1
-
cpe:2.3:a:netatalk:netatalk:3.1.1
-
cpe:2.3:a:netatalk:netatalk:3.1.10
-
cpe:2.3:a:netatalk:netatalk:3.1.11
-
cpe:2.3:a:netatalk:netatalk:3.1.2
-
cpe:2.3:a:netatalk:netatalk:3.1.3
-
cpe:2.3:a:netatalk:netatalk:3.1.4
-
cpe:2.3:a:netatalk:netatalk:3.1.5
-
cpe:2.3:a:netatalk:netatalk:3.1.6
-
cpe:2.3:a:netatalk:netatalk:3.1.7
-
cpe:2.3:a:netatalk:netatalk:3.1.8
-
cpe:2.3:a:netatalk:netatalk:3.1.9
-
cpe:2.3:a:synology:router_manager:1.2
-
cpe:2.3:a:synology:router_manager:1.2-7742
-
cpe:2.3:a:synology:router_manager:1.2-7742-1
-
cpe:2.3:a:synology:router_manager:1.2-7742-2
-
cpe:2.3:a:synology:router_manager:1.2-7742-3
-
cpe:2.3:a:synology:router_manager:1.2-7742-4
-
cpe:2.3:a:synology:skynas:-
-
cpe:2.3:h:synology:vs960hd:-
-
cpe:2.3:o:debian:debian_linux:9.0
-
cpe:2.3:o:synology:diskstation_manager:5.2
-
cpe:2.3:o:synology:diskstation_manager:5.2-5565
-
cpe:2.3:o:synology:diskstation_manager:5.2-5565-1
-
cpe:2.3:o:synology:diskstation_manager:5.2-5565-2
-
cpe:2.3:o:synology:diskstation_manager:5.2-5592
-
cpe:2.3:o:synology:diskstation_manager:5.2-5592-1
-
cpe:2.3:o:synology:diskstation_manager:5.2-5592-2
-
cpe:2.3:o:synology:diskstation_manager:5.2-5592-3
-
cpe:2.3:o:synology:diskstation_manager:5.2-5592-4
-
cpe:2.3:o:synology:diskstation_manager:5.2-5620
-
cpe:2.3:o:synology:diskstation_manager:5.2-5644
-
cpe:2.3:o:synology:diskstation_manager:5.2-5644-1
-
cpe:2.3:o:synology:diskstation_manager:5.2-5644-2
-
cpe:2.3:o:synology:diskstation_manager:5.2-5644-3
-
cpe:2.3:o:synology:diskstation_manager:5.2-5644-5
-
cpe:2.3:o:synology:diskstation_manager:5.2-5644-8
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-1
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-2
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-3
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-4
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-5
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-6
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-7
-
cpe:2.3:o:synology:diskstation_manager:5.2-5967-8
-
cpe:2.3:o:synology:diskstation_manager:6.1
-
cpe:2.3:o:synology:diskstation_manager:6.1-15047
-
cpe:2.3:o:synology:diskstation_manager:6.1-15047-1
-
cpe:2.3:o:synology:diskstation_manager:6.1-15047-2
-
cpe:2.3:o:synology:diskstation_manager:6.1.1
-
cpe:2.3:o:synology:diskstation_manager:6.1.1-15101
-
cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-1
-
cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-2
-
cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-3
-
cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-4
-
cpe:2.3:o:synology:diskstation_manager:6.1.2-15132
-
cpe:2.3:o:synology:diskstation_manager:6.1.2-15132-1
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-1
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-3
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-4
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-5
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-6
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-7
-
cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-8
-
cpe:2.3:o:synology:diskstation_manager:6.1.4-15217
-
cpe:2.3:o:synology:diskstation_manager:6.1.4-15217-1
-
cpe:2.3:o:synology:diskstation_manager:6.1.4-15217-2
-
cpe:2.3:o:synology:diskstation_manager:6.1.4-15217-3
-
cpe:2.3:o:synology:diskstation_manager:6.1.4-15217-4
-
cpe:2.3:o:synology:diskstation_manager:6.1.4-15217-5
-
cpe:2.3:o:synology:diskstation_manager:6.1.6-15266
-
cpe:2.3:o:synology:diskstation_manager:6.1.7-15284
-
cpe:2.3:o:synology:diskstation_manager:6.1.7-15284-1
-
cpe:2.3:o:synology:diskstation_manager:6.1.7-15284-2
-
cpe:2.3:o:synology:diskstation_manager:6.2
-
cpe:2.3:o:synology:diskstation_manager:6.2-23739
-
cpe:2.3:o:synology:diskstation_manager:6.2-23739-1
-
cpe:2.3:o:synology:diskstation_manager:6.2-23739-2
-
cpe:2.3:o:synology:diskstation_manager:6.2.1
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-1
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-2
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-3
-
cpe:2.3:o:synology:vs960hd_firmware:-