CVE-2018-6853: Buffer Overflow
First published: Mon Jul 09 2018(Updated: )
Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to Local Privilege Escalation via IOCTL 0x80206024. By crafting an input buffer we can control the execution path to the point where a global variable will be written to a user controlled address. We can take advantage of this condition to zero-out the pointer to the security descriptor in the object header of a privileged process or modify the security descriptor itself and run code in the context of a process running as SYSTEM.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sophos SafeGuard Easy Device Encryption Client | =6.00 | |
| Sophos SafeGuard Easy Device Encryption Client | =6.10 | |
| Sophos SafeGuard Easy Device Encryption Client | =7.00 | |
| Sophos SafeGuard Enterprise Client | =5.60.3-vs-nfd | |
| Sophos SafeGuard Enterprise Client | =6.00 | |
| Sophos SafeGuard Enterprise Client | =6.00.1 | |
| Sophos SafeGuard Enterprise Client | =6.10 | |
| Sophos SafeGuard Enterprise Client | =7.00 | |
| Sophos SafeGuard Enterprise Client | =8.00 | |
| Sophos SafeGuard LanCrypt Client | =3.90.1-ts | |
| Sophos SafeGuard LanCrypt Client | =3.90.2 | |
| Sophos SafeGuard LanCrypt Client | =3.95.1 | |
| Sophos SafeGuard LanCrypt Client | =3.95.1-ts |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-6853?
CVE-2018-6853 is classified as a high-severity local privilege escalation vulnerability.
How do I fix CVE-2018-6853?
To fix CVE-2018-6853, upgrade to Sophos SafeGuard Enterprise version 8.00.5 or later, SafeGuard Easy version 7.00.3 or later, or SafeGuard LAN Crypt version 3.95.2 or later.
Which software versions are affected by CVE-2018-6853?
CVE-2018-6853 affects Sophos SafeGuard Enterprise versions before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt versions before 3.95.2.
What is the attack vector for CVE-2018-6853?
The attack vector for CVE-2018-6853 involves local exploitation through crafting an input buffer to escalate privileges.
Who is impacted by CVE-2018-6853?
Organizations using affected versions of Sophos SafeGuard software are at risk of local privilege escalation due to CVE-2018-6853.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/sophos
- canonical/sophos safeguard easy device encryption client
- version/sophos safeguard easy device encryption client/6.00
- version/sophos safeguard easy device encryption client/6.10
- version/sophos safeguard easy device encryption client/7.00
- canonical/sophos safeguard enterprise client
- version/sophos safeguard enterprise client/5.60.3-vs-nfd
- version/sophos safeguard enterprise client/6.00
- version/sophos safeguard enterprise client/6.00.1
- version/sophos safeguard enterprise client/6.10
- version/sophos safeguard enterprise client/7.00
- version/sophos safeguard enterprise client/8.00
- canonical/sophos safeguard lancrypt client
- version/sophos safeguard lancrypt client/3.90.1-ts
- version/sophos safeguard lancrypt client/3.90.2
- version/sophos safeguard lancrypt client/3.95.1
- version/sophos safeguard lancrypt client/3.95.1-ts