Administrative password hash disclosure in FortiOS

Published: 2016-12-05 10:55:14
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2016-7542
CVSSv3 3.8 [CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CWE ID CWE-200
Exploitation vector Network
Public exploit N/A
Vulnerable software FortiOS
Vulnerable software versions FortiOS 5.2.4
FortiOS 5.2.9
FortiOS 5.2.8

Show more

Vendor URL Fortinet, Inc

Security Advisory

1) Information disclosure

Description

The vulnerability allows a remote attacker to obtain hash of local administrator.

The vulnerability exists due to unknown error. A remote attacker with unspecified privileges may be able to obtain password hash of local administrator. It is unclear, if the attacker should be authenticated.

Successful exploitation of the vulnerability may allow an attacker to brute-force password hash and obtain administrative privileges on vulnerable device.


Remediation

The vulnerability is fixed in versions 5.2.10 GA and 5.4.2 GA.

External links

http://fortiguard.com/advisory/FG-IR-16-050

Back to List