SB2017092007 - Two vulnerabilities in WatchGuard Fireware
Published: September 20, 2017
Security Bulletin ID
SB2017092007
Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Cross-site scripting (CVE-ID: N/A)
The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data passed via a login name, password, or e-mail address. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
2) XXE attack (CVE-ID: N/A)
The vulnerability allows a remote attacker to conduct XXE attack.The weakness exists due to input validation flaw when handling XML message containing an empty member tag. A remote attacker can send a specially crafted login request to the XML-RPC interface, trigger the target wgagent service to crash and cause all user interface sessions to be logged out.
Successful exploitation of the vulnerability results in denial of service.
Remediation
Install update from vendor's website.