CVE-2020-4042

Name
CVE-2020-4042
Description
Bareos before version 19.2.8 and earlier allows a malicious client to communicate with the director without knowledge of the shared secret if the director allows client initiated connection and connects to the client itself. The malicious client can replay the Bareos director's cram-md5 challenge to the director itself leading to the director responding to the replayed challenge. The response obtained is then a valid reply to the directors original challenge. This is fixed in version 19.2.8.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Mitigation https://github.com/bareos/bareos/security/advisories/GHSA-vqpj-2vhj-h752
Vendor Advisory https://bugs.bareos.org/view.php?id=1250

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:bareos:bareos:*:*:*:*:*:*:*:* bareos >= None <= 19.2.7
cpe:2.3:a:bareos:bareos:19.2.8:pre:*:*:*:*:*:* bareos == None == 19.2.8

Vulnerable and fixed packages

Source package Branch Version Maintainer Status