Main Vulnerability Database Vulnerabilities #VU16954

Security restrictions bypass in Thrift - CVE-2018-1320

Published: January 13, 2019

Vulnerability identifier: #VU16954

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-1320

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Apache Foundation

Affected software:
Thrift

Detailed vulnerability description

The vulnerability allows a remote attacker to gain access to bypass security restrictions.

The vulnerability exists due to unspecified flaw. A remote attacker can bypass SASL negotiation isComplete validation in the org.apache.thrift.transport.TSaslTransport class. An assert used to determine if the SASL handshake had successfully completed could be disabled in production settings making the validation incomplete.

How to mitigate CVE-2018-1320

Update to version 0.12.0.

Sources

https://lists.apache.org/thread.html/da5234b5e78f1c99190407f791dfe1bf6c58de8d30d15974a9669be3@%3Cuser.thrift.apache.org%3E

Security restrictions bypass in Thrift - CVE-2018-1320

Detailed vulnerability description

How to mitigate CVE-2018-1320

Sources

Please verify you're human