← back
CVE-2018-9233

CVE-2018-9233

EPSS 1.7%
Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for attackers to determine a cleartext password, and subsequently choose unsafe malware settings, via rainbow tables or other approaches.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44411/unverifiedexploitdbwww.exploit-db.com/exploits/44411unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-CONTROL-PANEL-v10.7-INSECURE-CRYPTO-CVE-2018-9233.txthttp://seclists.org/fulldisclosure/2018/Apr/7https://www.exploit-db.com/exploits/44411/