Watchguard Extensible Threat Management (XTM) version 11.7.4 and possibly earlier versions contain a buffer overflow vulnerability (CWE-121).
CWE-121: Stack-based Buffer Overflow
Watchguard Extensible Threat Management (XTM) version 11.7.4 and possibly earlier versions contain a buffer overflow vulnerability when reading large cookie requests. Remote administration is enabled by default on TCP/8080 for the virtual appliances (XTMv). The physical XTM appliances do not have this feature enabled by default.
A remote unauthenticated attacker may be able to cause a denial of service, or execute arbitrary code on the appliance.
Apply an Update
Restrict access to the Watchguard XTM interface
Thanks to Jerome Nokin (Research and Discovery) and Thierry Zoller (Coordination) from Verizon Enterprise Solutions (GCIS Threat and Vulnerability Management) for reporting this vulnerability.
This document was written by Adam Rauf.
|Date First Published:||2013-10-18|
|Date Last Updated:||2013-10-18 20:04 UTC|