Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1520

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-1520
Last Modified 05 Sep 2008 04:30:49
Published 02 Apr 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1520

Summary

The CLI interface for WatchGuard Firebox Vclass 3.2 and earlier, and RSSA Appliance 3.0.2, does not properly close the SSH connection when a -N option is provided during authentication, which allows remote attackers to access CLI with administrator privileges.

Vulnerable Systems


References

BID - 5815

XF - firebox-vclass-cli-admin-privileges(10218)

OSVDB - 4831

BUGTRAQ - 20020927 Software Update Available for Legacy RapidStream Appliances and WatchGuard Firebox Vclass appliances

BUGTRAQ - 20020926 Watchguard firewall appliances security issues


Last Updated: 27 May 2016 10:37:22