CVE-2018-1320

Name of the Vulnerable Software and Affected Versions Apache Thrift Java client library versions 0.5.0 through 0.11.0

Description The issue is related to insufficient input validation in the org.apache.thrift.transport.TSaslTransport class, allowing a remote attacker to bypass SASL negotiation validation. This can be exploited to gain unauthorized access to protected information by circumventing SASL negotiation. The problem arises because an assert used to determine if the SASL handshake had successfully completed could be disabled in production settings, making the validation incomplete.

Recommendations For Apache Thrift Java client library versions 0.5.0 through 0.11.0, consider disabling the org.apache.thrift.transport.TSaslTransport class or restricting its use until a patch is available to prevent bypassing SASL negotiation validation. Ensure that asserts are not disabled in production settings to maintain the integrity of the SASL handshake validation.