Fortinet FortiOS ÊÚȨÎÊÌâÎó²îÇ徲ͨ¸æ

Ðû²¼Ê±¼ä 2019-05-30

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2018-13382£¬£¬£¬Î£ÏÕ¼¶±ð£º¸ß¼¶£¬£¬£¬CVSS·ÖÖµ£º¹Ù·½Î´ÆÀ¶¨

ÊÜÓ°ÏìµÄ°æ±¾


FortiOS 6.0.0 to 6.0.4 
FortiOS 5.6.0 to 5.6.8 
FortiOS 5.4.1 to 5.4.10

½öÔÚÆôÓÃSSL VPN WebÃÅ»§Ê±¡£¡£¡£


Îó²î¸ÅÊö


Fortinet FortiOSÊÇÃÀ¹ú·ÉËþ£¨Fortinet£©¹«Ë¾µÄÒ»Ì×רÓÃÓÚFortiGateÍøÂçÇ徲ƽ̨ÉϵÄÇå¾²²Ù×÷ϵͳ¡£¡£¡£¸ÃϵͳΪÓû§Ìṩ·À»ðǽ¡¢·À²¡¶¾¡¢IPSec/SSLVPN¡¢WebÄÚÈݹýÂ˺ͷ´À¬»øÓʼþµÈ¶àÖÖÇå¾²¹¦Ð§¡£¡£¡£


Fortinet FortiOSµÄSSL VPN WebÃÅ»§±£´æÊÚȨÎÊÌâÎó²î¡£¡£¡£¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÖÐȱÉÙÉí·ÝÑéÖ¤²½·¥»òÉí·ÝÑé֤ǿ¶Èȱ·¦¡£¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPOC/EXP¡£¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ³§ÉÌÒÑÐû²¼Éý¼¶²¹¶¡ÒÔÐÞ¸´Îó²î£¬£¬£¬ÇëÉý¼¶µ½FortiOS 5.4.11,5.6.9,6.0.5,6.2.0»òÒÔÉÏ°æ±¾£¬£¬£¬²¹¶¡»ñÈ¡Á´½Ó£ºhttps://fortiguard.com/psirt/FG-IR-18-389 ¡£¡£¡£


»òÕßͨ¹ýÓ¦ÓÃÒÔÏÂCLIÏÂÁî½ûÓÃSSL-VPN WebÃÅ»§Ð§ÀÍ£º
config vpn ssl settings
unset source-interface

end


²Î¿¼Á´½Ó


https://fortiguard.com/psirt/FG-IR-18-389
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201905-1025