[Security-announce] New VMSA-2018-0010 – Horizon DaaS update addresses a broken authentication issue


–===============0648245750132190115==
Content-Language: en-US
Content-Type: multipart/alternative;
boundary=”_000_SN1PR05MB190208EBD262858D43B50190B9B40SN1PR05MB1902namp_”

–_000_SN1PR05MB190208EBD262858D43B50190B9B40SN1PR05MB1902namp_
Content-Type: text/plain; charset=”iso-8859-1″
Content-Transfer-Encoding: quoted-printable

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

– ———————————————————————–
VMware Security Advisory

Advisory ID: VMSA-2018-0010
Severity: Moderate
Synopsis: Horizon DaaS update addresses a broken authentication
issue
Issue date: 2018-04-19
Updated on: 2018-04-19 (Initial Advisory)
CVE number: CVE-2018-6960

1. Summary

Horizon DaaS update addresses a broken authentication issue

2. Relevant Products

VMware Horizon DaaS

3. Problem Description

Broken authentication issue in Horizon DaaS

Horizon DaaS contains a broken authentication vulnerability that may
allow an attacker to bypass two-factor authentication.

Note: In order to exploit this issue, an attacker must have a
legitimate account on Horizon DaaS.

VMware would like to thank Peter Ivezaj, President – Digital Upkeep
for reporting this issue to us.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the identifier CVE-2018-6960 to this issue.

Column 5 of the following table lists the action required to
remediate the vulnerability in each release, if a solution is
available.

VMware Product Running Replace with/ Mitigations/

Product Version on Severity Apply patch Workarounds
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D =3D=3D=3D=3D=3D=3D=3D =3D=3D=3D=
=3D=3D=3D =3D=3D=3D=3D=3D=3D=3D=3D =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
Horizon DaaS 7.x All Moderate 8.0.0 None

4. Solution

Please review the patch/release notes for your product and version and
verify the checksum of your downloaded file.

VMware Horizon DaaS
Downloads:
https://my.vmware.com/group/vmware/info?slug=3Ddesktop_end_user_
computing/vmware_horizon_daas/8_0
Documentation:
https://docs.vmware.com/en/VMware-Horizon-DaaS/index.html

5. References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2018-6960

– ————————————————————————-

6. Change log

2018-04-19 VMSA-2018-0010 Initial security advisory in conjunction with
the release of VMware Horizon DaaS 8.0.0 on 2018-04-19.

– ————————————————————————-

7. Contact

E-mail list for product security notifications and announcements:
http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce

This Security Advisory is posted to the following lists:

security-announce@lists.vmware.com
bugtraq@securityfocus.com
fulldisclosure@seclists.org

E-mail: security@vmware.com
PGP key at: https://kb.vmware.com/kb/1055

VMware Security Advisories
http://www.vmware.com/security/advisories

VMware Security Response Policy
https://www.vmware.com/support/policies/security_response.html

VMware Lifecycle Support Phases
https://www.vmware.com/support/policies/lifecycle.html

VMware Security & Compliance Blog
https://blogs.vmware.com/security

Twitter

Copyright 2018 VMware Inc. All rights reserved.

—–BEGIN PGP SIGNATURE—–
Version: Encryption Desktop 10.4.1 (Build 490)
Charset: utf-8

wj8DBQFa2XFQDEcm8Vbi9kMRAjldAJ9r1m4cV09HeeGbSq8JVAHFT4MGMwCg4OTh
DmBnPnDqrpbhXVwQgjeSKb4=3D
=3Dgam/
—–END PGP SIGNATURE—–

–_000_SN1PR05MB190208EBD262858D43B50190B9B40SN1PR05MB1902namp_
Content-Type: text/html; charset=”iso-8859-1″
Content-Transfer-Encoding: quoted-printable

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

– ———————————————————————–
            &nb=
sp;            =
  VMware Security Advisory

Advisory ID: VMSA-2018-0010
Severity:    Moderate
Synopsis:    Horizon DaaS update addresses a broken authenti=
cation
             is=
sue
Issue date:  2018-04-19
Updated on:  2018-04-19 (Initial Advisory)
CVE number:  CVE-2018-6960

1. Summary

   Horizon DaaS update addresses a broken authentication issue

2. Relevant Products

   VMware Horizon DaaS

3. Problem Description

   Broken authentication issue in Horizon DaaS
   
   Horizon DaaS contains a broken authentication vulnerability th=
at may
   allow an attacker to bypass two-factor authentication.
   
   Note: In order to exploit this issue, an attacker must have a
   legitimate account on Horizon DaaS.   
    
   VMware would like to thank Peter Ivezaj, President – Digital U=
pkeep
   for reporting this issue to us.

   The Common Vulnerabilities and Exposures project (cve.mitre.or=
g) has
   assigned the identifier CVE-2018-6960 to this issue.

   Column 5 of the following table lists the action required to
   remediate the vulnerability in each release, if a solution is
   available.

   VMware        Product =
Running           Replac=
e with/  Mitigations/    
     
   Product       Version  on&n=
bsp;     Severity  Apply patch    W=
orkarounds
   =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D  =3D=3D=3D=3D=3D=3D=
=3D  =3D=3D=3D=3D=3D=3D  =3D=3D=3D=3D=3D=3D=3D=3D  =3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D  =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
   Horizon DaaS   7.x      All=
    Moderate    8.0.0    =
      None
   
   

   
4. Solution

   Please review the patch/release notes for your product and ver=
sion and
   verify the checksum of your downloaded file.

   VMware Horizon DaaS
   Downloads:
   https://my.vmware.com/group/vmware/info?slug=3Ddesktop_end_use=
r_
   computing/vmware_horizon_daas/8_0
   Documentation:
   https://docs.vmware.com/en/VMware-Horizon-DaaS/index.html

   

5. References

   https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2018-6960=

– ————————————————————————-=

6. Change log

   2018-04-19 VMSA-2018-0010 Initial security advisory in conjunc=
tion with
   the release of VMware Horizon DaaS 8.0.0 on 2018-04-19.

– ————————————————————————-=

7. Contact

   E-mail list for product security notifications and announcemen=
ts:
   http://lists.vmware.com/cgi-bin/mailman/listinfo/security-anno=
unce

   This Security Advisory is posted to the following lists:
   
     security-announce@lists.vmware.com
     bugtraq@securityfocus.com
     fulldisclosure@seclists.org

   E-mail: security@vmware.com
   PGP key at: https://kb.vmware.com/kb/1055

   VMware Security Advisories
   http://www.vmware.com/security/advisories

   VMware Security Response Policy
   https://www.vmware.com/support/policies/security_response.html=

   VMware Lifecycle Support Phases
   https://www.vmware.com/support/policies/lifecycle.html
   
   VMware Security & Compliance Blog
   https://blogs.vmware.com/security

   Twitter
   https://twitter.com/VMwareSRC

   Copyright 2018 VMware Inc.  All rights reserved.

—–BEGIN PGP SIGNATURE—–
Version: Encryption Desktop 10.4.1 (Build 490)
Charset: utf-8

wj8DBQFa2XFQDEcm8Vbi9kMRAjldAJ9r1m4cV09HeeGbSq8JVAHFT4MGMwCg4OTh
DmBnPnDqrpbhXVwQgjeSKb4=3D
=3Dgam/
—–END PGP SIGNATURE—–

–_000_SN1PR05MB190208EBD262858D43B50190B9B40SN1PR05MB1902namp_–

–===============0648245750132190115==
Content-Type: text/plain; charset=”us-ascii”
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
Security-announce mailing list
Security-announce@lists.vmware.com
https://lists.vmware.com/mailman/listinfo/security-announce

–===============0648245750132190115==–