WatchGuard.XML.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in WatchGuard Firebox and XTM appliances.
The vulnerability is due to improper validation of the length of user-supplied data in HTTP requests. A remote attacker can exploit the vulnerability by sending a malicious request to the target server. Successful exploitation could result in arbitrary code execution on the target system.
Affected Products
Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2023-05-18 | 23.557 | Sig Added |
2022-06-29 | 21.347 | Default_action:pass:drop |
2022-06-21 | 21.342 |