virus logo Intrusion Prevention

FortiOS.Captive.Portal.Out.Of.Bounds.Write

description-logoDescription

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in FortiOS and FortiProxy.
The vulnerability is due to missing validation of the payload length on the vulnerable endpoint. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.

affected-products-logoAffected Products

FortiOS version 7.4.0 through 7.4.1
FortiOS version 7.2.0 through 7.2.5
FortiOS version 7.0.0 through 7.0.12
FortiOS version 6.4.0 through 6.4.14
FortiOS version 6.2.0 through 6.2.15
FortiProxy version 7.4.0
FortiProxy version 7.2.0 through 7.2.6
FortiProxy version 7.0.0 through 7.0.12
FortiProxy version 2.0.0 through 2.0.13

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor or follow the workaround provided by the vendor.
https://www.fortiguard.com/psirt/FG-IR-23-328

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2024-03-25 27.754 Name:FG-VD-54089.
0day:FortiOS.
Captive.
Portal.
Out.
Of.
Bounds.
Write
2023-11-01 26.669 Default_action:pass:drop
2023-10-19 25.660

References

https://www.fortiguard.com/psirt/FG-IR-23-328
ID 54089
Created Oct 19, 2023
Updated Mar 21, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2023-42789 CVE-2023-42790
Exploit Prediction Score 0.09%
Default Action drop
Active
Affected OS Linux
Affected App Other