PT-2013-5736 · Watchguard · Watchguard Server Center+2

Julien Ahrens

Published

2013-10-03

Updated

2013-10-07

CVE-2013-5701

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions WatchGuard Server Center versions 11.7.3 through 11.7.4

Description The issue allows local users to gain privileges via a Trojan horse wgpr.dll file in the application's bin directory. This is due to multiple untrusted search path vulnerabilities in Watchguard Log Collector and Watchguard WebBlocker Server.

Recommendations For WatchGuard Server Center versions 11.7.3 through 11.7.4, consider removing or restricting access to the wgpr.dll file in the application's bin directory as a temporary mitigation measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2013-5701

Affected Products

Watchguard Server Center

Watchguard Log Collector

Watchguard Webblocker Server

PT-2013-5736 · Watchguard · Watchguard Server Center+2

CVE-2013-5701

Weakness Enumeration

Related Identifiers

Affected Products

References · 5