Vulnerabilities > CVE-2018-9233 - Use of Password Hash With Insufficient Computational Effort vulnerability in Sophos Endpoint Protection 10.7

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
sophos
CWE-916
exploit available

Summary

Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for attackers to determine a cleartext password, and subsequently choose unsafe malware settings, via rainbow tables or other approaches.

Vulnerable Configurations

Part Description Count
Application
Sophos
1

Exploit-Db

descriptionSophos Endpoint Protection Control Panel 10.7 - Weak Password Encryption. CVE-2018-9233. Local exploit for Windows platform
fileexploits/windows/local/44411.txt
idEDB-ID:44411
last seen2018-05-24
modified2018-04-06
platformwindows
port
published2018-04-06
reporterExploit-DB
sourcehttps://www.exploit-db.com/download/44411/
titleSophos Endpoint Protection Control Panel 10.7 - Weak Password Encryption
typelocal

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/147040/SOPHOS-ENDPOINT-PROTECTION-CONTROL-PANEL-v10.7-INSECURE-CRYPTO-CVE-2018-9233.txt
idPACKETSTORM:147040
last seen2018-04-05
published2018-04-04
reporterhyp3rlinx
sourcehttps://packetstormsecurity.com/files/147040/Sophos-Endpoint-Protection-10.7-Insecure-Cryptography.html
titleSophos Endpoint Protection 10.7 Insecure Cryptography