Vulnerabilities > CVE-2018-9233 - Use of Password Hash With Insufficient Computational Effort vulnerability in Sophos Endpoint Protection 10.7
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for attackers to determine a cleartext password, and subsequently choose unsafe malware settings, via rainbow tables or other approaches.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Sophos Endpoint Protection Control Panel 10.7 - Weak Password Encryption. CVE-2018-9233. Local exploit for Windows platform |
| file | exploits/windows/local/44411.txt |
| id | EDB-ID:44411 |
| last seen | 2018-05-24 |
| modified | 2018-04-06 |
| platform | windows |
| port | |
| published | 2018-04-06 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/44411/ |
| title | Sophos Endpoint Protection Control Panel 10.7 - Weak Password Encryption |
| type | local |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/147040/SOPHOS-ENDPOINT-PROTECTION-CONTROL-PANEL-v10.7-INSECURE-CRYPTO-CVE-2018-9233.txt |
| id | PACKETSTORM:147040 |
| last seen | 2018-04-05 |
| published | 2018-04-04 |
| reporter | hyp3rlinx |
| source | https://packetstormsecurity.com/files/147040/Sophos-Endpoint-Protection-10.7-Insecure-Cryptography.html |
| title | Sophos Endpoint Protection 10.7 Insecure Cryptography |