Main Vulnerability Database Vulnerabilities #VU16954

#VU16954 Security restrictions bypass in Thrift - CVE-2018-1320

Published: January 13, 2019

Vulnerability identifier: #VU16954

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-1320

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Thrift

Software vendor:
Apache Foundation

Description

The vulnerability allows a remote attacker to gain access to bypass security restrictions.

The vulnerability exists due to unspecified flaw. A remote attacker can bypass SASL negotiation isComplete validation in the org.apache.thrift.transport.TSaslTransport class. An assert used to determine if the SASL handshake had successfully completed could be disabled in production settings making the validation incomplete.

Remediation

Update to version 0.12.0.

External links

https://lists.apache.org/thread.html/da5234b5e78f1c99190407f791dfe1bf6c58de8d30d15974a9669be3@%3Cuser.thrift.apache.org%3E

#VU16954 Security restrictions bypass in Thrift - CVE-2018-1320

Description

Remediation

External links

Please verify you're human