CVE-2018-9233 Information

Description

Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in PROGRAMDATA\Sophos\Sophos Anti-Virus\Config\machine.xml which makes it easier for attackers to determine a cleartext password and subsequently choose unsafe malware settings via rainbow tables or other approaches.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-CONTROL-PANEL-v10.7-INSECURE-CRYPTO-CVE-2018-9233.txt http://seclists.org/fulldisclosure/2018/Apr/7 https://www.exploit-db.com/exploits/44411/

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8