What is the severity of CVE-2018-5349?

The severity of CVE-2018-5349 is considered to be medium due to improper permissions that could allow unauthorized file modifications.

What types of software are affected by CVE-2018-5349?

CVE-2018-5349 affects Heimdal PRO version 2.2.190 and is likely also present in Heimdal FREE and Heimdal CORP.

What impact does CVE-2018-5349 have on systems?

CVE-2018-5349 could allow malicious users to write files in a sensitive directory, potentially leading to further exploits.

How can I identify if my system is vulnerable to CVE-2018-5349?

To identify if your system is vulnerable to CVE-2018-5349, check the installed version of Heimdal and the permissions set on the 'C:\ProgramData\Heimdal Security\Heimdal Agent' directory.

Vulnerability/
CVE-2018-5349

high

7.8

CWE

732

22/3/2018

5/8/2024

CVE-2018-5349

First published: Thu Mar 22 2018(Updated: )

A vulnerability has been found in Heimdal PRO v2.2.190, but it is most likely also present in Heimdal FREE and Heimdal CORP. Faulty permissions on the directory "C:\ProgramData\Heimdal Security\Heimdal Agent" allow BUILTIN\Users to write new files to the directory. On startup, the process Heimdal.MonitorServices.exe running as SYSTEM will attempt to load version.dll from this directory. Placing a malicious version.dll in this directory will result in privilege escalation. NOTE: any affected Heimdal products are completely unrelated to the Heimdal vendor of a Kerberos 5 product on the h5l.org web site.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
heimdal	=2.2.190

Never miss a vulnerability like this again

Reference Links

https://improsec.com/blog/heimdal-advisory-1

Frequently Asked Questions

What is the severity of CVE-2018-5349?
The severity of CVE-2018-5349 is considered to be medium due to improper permissions that could allow unauthorized file modifications.
How do I fix CVE-2018-5349?
To fix CVE-2018-5349, review and adjust the permissions on the directory 'C:\ProgramData\Heimdal Security\Heimdal Agent' to prevent unauthorized access.
What types of software are affected by CVE-2018-5349?
CVE-2018-5349 affects Heimdal PRO version 2.2.190 and is likely also present in Heimdal FREE and Heimdal CORP.
What impact does CVE-2018-5349 have on systems?
CVE-2018-5349 could allow malicious users to write files in a sensitive directory, potentially leading to further exploits.
How can I identify if my system is vulnerable to CVE-2018-5349?
To identify if your system is vulnerable to CVE-2018-5349, check the installed version of Heimdal and the permissions set on the 'C:\ProgramData\Heimdal Security\Heimdal Agent' directory.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/references
agent/author
agent/severity
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/heimdalsecurity
canonical/heimdal
version/heimdal/2.2.190

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.