PT-2002-2053 · Watchguard · Watchguard Soho Firewall

Published

2002-08-31

Updated

2008-09-05

CVE-2002-1047

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Watchguard Soho Firewall version 5.0.35a

Description: The issue allows remote attackers to gain privileges with a correct password but an incorrect user name, affecting the FTP service.

Recommendations: For Watchguard Soho Firewall version 5.0.35a, update the FTP service configuration to properly validate user credentials, ensuring that both the username and password must be correct to gain access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1047

Affected Products

Watchguard Soho Firewall

PT-2002-2053 · Watchguard · Watchguard Soho Firewall

CVE-2002-1047

Related Identifiers

Affected Products

References · 3