SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service





Category:   Device (Embedded Server/Appliance)  >   IBM Security Network Protection Vendors:   IBM
IBM Security Network Protection GSKit Flaws Let Local Users Obtain Passwords and Other Sensitive Information and Deny Service
SecurityTracker Alert ID:  1041012
SecurityTracker URL:  http://securitytracker.com/id/1041012
CVE Reference:   CVE-2018-1426, CVE-2018-1427, CVE-2018-1428, CVE-2018-1447   (Links to External Site)
Updated:  Aug 20 2018
Original Entry Date:  May 31 2018
Impact:   Denial of service via local system, Disclosure of authentication information, Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 4.6.1, 4.6.2, 5.3.1, 5.3.3
Description:   Multiple vulnerabilities were reported in IBM Security Network Protection. A local user can cause denial of service conditions on the target system. A local user can obtain passwords on the target system. A local user can obtain potentially sensitive information on the target system.

The IBM GSKit component uses weaker than expected cryptographic algorithms [CVE-2018-1428]. A local user may be able to decrypt sensitive information on the target system.

A local user can set specially crafted environment variable values to trigger a buffer overflow in the IBM GSkit component and cause denial of service conditions on the target system [CVE-2018-1427].

The IBM GSKit component duplicates the PRNG state across fork() system calls when multiple ICC instances are loaded [CVE-2018-1426]. As a result, the system may create duplicate Session IDs or key material.

The GSKit CMS KDB logic does not salt the hash function [CVE-2018-1447]. As a result, passwords may not be sufficiently protected. A local user may be able to recover weak passwords.

Impact:   A local user can cause denial of service conditions on the target system.

A local user can obtain passwords on the target system.

A local user can obtain potentially sensitive information on the target system.

Solution:   IBM has issued a fix (4.6.1.0-ISS-ProvG-AllModels-Hotfix-FP0019, 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0027, 5.3.1.16-XGS-All-Models-Hotfix-IF0001, 5.3.3.6-XGS-All-Models-Hotfix-IF0001).

The IBM advisories are available at:

https://www-01.ibm.com/support/docview.wss?uid=swg22016549
https://www-01.ibm.com/support/docview.wss?uid=ibm10713555

Vendor URL:  www-01.ibm.com/support/docview.wss?uid=swg22016549 (Links to External Site)
Cause:   Access control error, Boundary error, Randomization error

Message History:   This archive entry has one or more follow-up message(s) listed below.
Jun 1 2018 (IBM Issues Fix for IBM Tivoli Federated Identity Manager) IBM Security Network Protection GSKit Flaws Let Local Users Obtain Passwords and Other Sensitive Information and Deny Service
IBM has issued a fix for IBM Tivoli Federated Identity Manager.
Oct 4 2018 (IBM Issues Fix for IBM WebSphere Application Server) IBM Security Network Protection GSKit Flaws Let Local Users Obtain Passwords and Other Sensitive Information and Deny Service
IBM has issued a fix for IBM WebSphere Application Server.
Nov 6 2018 (IBM Issues Fix for IBM Security Access Manager) IBM Security Network Protection GSKit Flaws Let Local Users Obtain Passwords and Other Sensitive Information and Deny Service
IBM has issued a fix for IBM Security Access Manager.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2018, SecurityGlobal.net LLC