Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2018-5388

Published: 31/05/2018 Updated: 07/11/2023
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Subscribe to Strongswan

Vulnerability Summary

In stroke_socket.c in strongSwan prior to 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.

Vulnerable Product Search on Vulmon Subscribe to Product

strongswan strongswan

debian debian linux 8.0

debian debian linux 9.0

canonical ubuntu linux 16.04

canonical ubuntu linux 14.04

canonical ubuntu linux 18.04

Vendor Advisories

Ubuntu Security Notice: strongswan vulnerabilities
Several security issues were fixed in strongSwan ...
Debian Security Advisories: DSA-4229-1 strongswan -- security update
Two vulnerabilities were discovered in strongSwan, an IKE/IPsec suite CVE-2018-5388 The stroke plugin did not verify the message length when reading from its control socket This vulnerability could lead to denial of service On Debian write access to the socket requires root permission on default configuration CVE-2018-10811 ...
Red Hat: CVE-2018-5388
An integer underflow has been discovered in strongSwan VPN's charon server, which could lead to a buffer overflow and consequent crash A local attacker, with enough privileges to access the Unix Domain Socket /var/run/charonctl, could use this vulnerability to crash the charon server ...
Arch Linux Issues:
strongSwan VPN's charon server prior to version 563 is missing a packet length check in stroke_socketc, allowing a buffer overflow which may lead to resource exhaustion and denial of service while reading from the socket According to the vendor, an attacker must typically have local root permissions to access the socket However, other accounts ...

References

CWE-787http://www.kb.cert.org/vuls/id/338343http://www.securityfocus.com/bid/104263https://www.debian.org/security/2018/dsa-4229https://usn.ubuntu.com/3771-1/https://security.gentoo.org/glsa/201811-16http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00077.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-12/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.htmlhttp://packetstormsecurity.com/files/172833/strongSwan-VPN-Charon-Server-Buffer-Overflow.htmlhttps://git.strongswan.org/?p=strongswan.git%3Ba=commitdiff%3Bh=0acd1ab4https://usn.ubuntu.com/3771-1/https://nvd.nist.govhttps://www.kb.cert.org/vuls/id/338343
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook