PSIRT

Format String Vulnerability in SSH username

Summary

There is a format string vulnerability in the SSH username handling when connecting to FortiOS 5.6.0, that may lead to memory corruption.

Affected Products

FortiOS version 5.6.0

The following Fortinet products are NOT affected:
FortiOS 5.4 all versions
FortiOS 5.2 all versions
FortiAnalyzer
FortiManager

Solutions

Please upgrade to FortiOS version 5.6.1 or above.
Workaround: Configure the trusthost feature to only allow trusted administrators to use SSH and deny others.

Acknowledgement

Fortinet thanks Simone Cardona for reporting this vulnerability.

IR Number	FG-IR-18-018
Date	Jan 11, 2019
Severity	High
CVSSv3 Score	7.3
Impact	Execute unauthorized code or commands
CVE ID	CVE-2018-1352
CVRF	Download

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

PSIRT

Format String Vulnerability in SSH username

Summary

Affected Products

Solutions

Acknowledgement

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

PSIRT

Format String Vulnerability in SSH username

Summary

Affected Products

Solutions

Acknowledgement

Threat Intelligence
Center