CVE-2018-5410

Public Exploit
Dokan file system driver contains a stack-based buffer overflow

Description

Dokan, versions between 1.0.0.5000 and 1.2.0.1000, are vulnerable to a stack-based buffer overflow in the dokan1.sys driver. An attacker can create a device handle to the system driver and send arbitrary input that will trigger the vulnerability. This vulnerability was introduced in the 1.0.0.5000 version update.

Remediation

Solution:

  • Dokan developers have released a new version, 1.2.1, that fixes this vulnerability by validating the user input.

Categories

7.8
CVSS
Severity: High
CVSS 3.1 •
CVSS 2.0 •
EPSS 1.11% Top 25%
Third-Party Advisory cert.org Third-Party Advisory securityfocus.com Third-Party Advisory mitre.org Third-Party Advisory github.com Third-Party Advisory exploit-db.com
Affected: Dokan Open Source File System
Published at:
Updated at:

References

Link Tags
https://kb.cert.org/vuls/id/741315/ third party advisory us government resource
https://www.exploit-db.com/exploits/46155/ third party advisory vdb entry exploit
https://cwe.mitre.org/data/definitions/121.html third party advisory
https://github.com/dokan-dev/dokany/releases/tag/v1.2.1.1000 third party advisory patch
http://www.securityfocus.com/bid/106274 third party advisory vdb entry

Frequently Asked Questions

What is the severity of CVE-2018-5410?
CVE-2018-5410 has been scored as a high severity vulnerability.
How to fix CVE-2018-5410?
To fix CVE-2018-5410: Dokan developers have released a new version, 1.2.1, that fixes this vulnerability by validating the user input.
Is CVE-2018-5410 being actively exploited in the wild?
It is possible that CVE-2018-5410 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~1% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2018-5410?
CVE-2018-5410 affects Dokan Open Source File System.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.