Computers seem to be virtually limitless in their abilities – they can send and receive digital information, serve content via many defined protocols, compute algorithms much faster than a human can, and even provide countless hours of fun and entertainment. One very common use of computers is indeed serving content to consumers, a technological concept known as client / server … [Read more...]
WatchGuard's XTM 11.8 Software Fixes Buffer Overflow & XSS Vulnerabilities
Overall Severity: High Summary: These vulnerabilities affect: WatchGuard WSM and Fireware XTM 11.7.4 and earlier How an attacker exploits them: Either by enticing an XTM administrator into clicking a specially crafted link or by visiting the appliance's web management UI with a malicious cookie Impact: In the worst case, an attacker can execute code on the XTM … [Read more...]
Minor Local Privilege Escalation Flaw in WSM Server Software
Severity: Low Summary: This vulnerability affects: WatchGuard System Manager (WSM) Server Software. How an attacker exploits it: By placing a specially crafted DLL into a specific WatchGuard path Impact: When you install WSM into a non-hardened, non-default directory, local users can execute code on your Windows computer with SYSTEM privileges (see mitigating factors … [Read more...]