Main Vulnerability Database Vulnerabilities #VU20369

Buffer overflow in Palo Alto PAN-OS - CVE-2019-1580

Published: August 22, 2019

Vulnerability identifier: #VU20369

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2019-1580

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Palo Alto Networks, Inc.

Affected software:
Palo Alto PAN-OS

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within sshd service. A remote non-authenticated attacker can send specially crafted packets to the sshd service, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2019-1580

Install updates from vendor's website.

Sources

https://securityadvisories.paloaltonetworks.com/Home/Detail/159

Buffer overflow in Palo Alto PAN-OS - CVE-2019-1580

Detailed vulnerability description

How to mitigate CVE-2019-1580

Sources

Please verify you're human