|Title:||Netatalk < 3.1.12 Arbitrary Code Execution Vulnerability|
|Summary:||Netatalk is prone to an unauthenticated code execution vulnerability.|
Netatalk is prone to an unauthenticated code execution vulnerability.
Netatalk is vulnerable to an out of bounds write in dsi_opensess.c.
This is due to lack of bounds checking on attacker controlled data.
A remote unauthenticated attacker can leverage this vulnerability
to achieve arbitrary code execution.
Netatalk versions before 3.1.12.
Update to version 3.1.12 or later.
BugTraq ID: 106301|
Common Vulnerability Exposure (CVE) ID: CVE-2018-1160
Debian Security Information: DSA-4356 (Google Search)
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.