CVE-2002-1519

Name of the Vulnerable Software and Affected Versions WatchGuard Firebox Vclass versions 3.2 and earlier WatchGuard RSSA Appliance version 3.0.2

Description The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the password parameter. This is a result of a format string vulnerability in the CLI interface.

Recommendations For WatchGuard Firebox Vclass versions 3.2 and earlier, update to a version later than 3.2 to resolve the issue. For WatchGuard RSSA Appliance version 3.0.2, update to a version later than 3.0.2 to resolve the issue. As a temporary workaround, consider restricting access to the CLI interface to minimize the risk of exploitation.