Vulnerabilities > CVE-2018-9190 - NULL Pointer Dereference vulnerability in Fortinet Forticlient

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

fortinet

CWE-476

nessus

NVD

Published: 2019-02-08

Updated: 2019-06-03

Summary

A null pointer dereference vulnerability in Fortinet FortiClientWindows 6.0.2 and earlier allows attacker to cause a denial of service via the NDIS miniport driver.

Vulnerable Configurations

Part	Description	Count
Application	Fortinet Fortinet Forticlient 4.0.1 Fortinet Forticlient 4.0.2 Fortinet Forticlient 4.0.3 Fortinet Forticlient 4.0.4 Fortinet Forticlient 4.1.0 Fortinet Forticlient 4.1.1 Fortinet Forticlient 4.1.2 Fortinet Forticlient 4.1.3 Fortinet Forticlient 4.2.0 Fortinet Forticlient 4.2.1 Fortinet Forticlient 4.2.2 Fortinet Forticlient 4.2.3 Fortinet Forticlient 4.2.4 Fortinet Forticlient 4.2.5 Fortinet Forticlient 4.2.6 Fortinet Forticlient 4.2.7 Fortinet Forticlient 4.3.0 Fortinet Forticlient 4.3.1 Fortinet Forticlient 4.3.2 Fortinet Forticlient 4.3.3 Fortinet Forticlient 4.3.4 Fortinet Forticlient 4.3.5 Fortinet Forticlient 5.0.5 Fortinet Forticlient 5.0.6 Fortinet Forticlient 5.0.7 Fortinet Forticlient 5.0.8 Fortinet Forticlient 5.0.9 Fortinet Forticlient 5.0.10 Fortinet Forticlient 5.0.11 Fortinet Forticlient 5.2.0 Fortinet Forticlient 5.2.1 Fortinet Forticlient 5.2.2 Fortinet Forticlient 5.2.3 Fortinet Forticlient 5.2.4 Fortinet Forticlient 5.2.5 Fortinet Forticlient 5.2.6 Fortinet Forticlient 5.4.0 Fortinet Forticlient 5.4.1 Fortinet Forticlient 5.4.2 Fortinet Forticlient 5.4.3 Fortinet Forticlient 5.4.4 Fortinet Forticlient 5.4.5 Fortinet Forticlient 5.6.0 Fortinet Forticlient 5.6.1 Fortinet Forticlient 5.6.2 Fortinet Forticlient 5.6.3 Fortinet Forticlient 5.6.4 Fortinet Forticlient 5.6.5 Fortinet Forticlient 5.6.6 Fortinet Forticlient 6.0.0 Fortinet Forticlient 6.0.1 Fortinet Forticlient 6.0.2	52

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Nessus

NASL family	Windows
NASL id	FORTICLIENT_6_0_3.NASL
description	The version of Fortinet FortiClient running on the remote host is prior to 6.0.3. It is, therefore, affected by a NULL pointer dereference flaw due to a failure to utilize necessary NULL checks before doing indirect function calls. An unauthenticated, local attacker can exploit this, via the NDIS Miniport drivers, to cause a denial of service condition when the application attempts to read or write memory with a NULL pointer.
last seen	2020-06-01
modified	2020-06-02
plugin id	122858
published	2019-03-14
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/122858
title	Fortinet FortiClient NDIS Miniport Driver Null Pointer Dereference

References

https://fortiguard.com/advisory/FG-IR-18-092