PT-2002-1578 · Watchguard · Watchguard Soho Firewall

Published

2002-06-11

Updated

2008-09-05

CVE-2002-0528

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Watchguard SOHO firewall version 5.0.35

Description The issue concerns the unpredictable disabling of certain IP restrictions for customized services after an administrator upgrades to version 5.0.35. This could potentially allow remote attackers to bypass the intended access control rules.

Recommendations For version 5.0.35, consider downgrading to a previous version where this issue is not present, or contact the vendor for guidance on how to mitigate the risk of access control rule bypass until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0528

Affected Products

Watchguard Soho Firewall

PT-2002-1578 · Watchguard · Watchguard Soho Firewall

CVE-2002-0528

Related Identifiers

Affected Products

References · 5