PT-2015-5694 · Fortinet · Fortinet Single Sign On

Andres Lopez Luksenberg

Published

2015-03-19

Updated

2018-10-09

CVE-2015-2281

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Fortinet Single Sign On (FSSO) versions prior to build 164

Description The issue is related to a stack-based buffer overflow in the collectoragent.exe component. This can be exploited by remote attackers who send a large PROCESS HELLO message to the Message Dispatcher on TCP port 8000, potentially allowing them to execute arbitrary code.

Recommendations For versions prior to build 164, update to build 164 or later to resolve the issue. As a temporary workaround, consider restricting access to the Message Dispatcher on TCP port 8000 to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2015-2281

Affected Products

Fortinet Single Sign On

PT-2015-5694 · Fortinet · Fortinet Single Sign On

CVE-2015-2281

Weakness Enumeration

Related Identifiers

Affected Products

References · 9