Watchguard XCS remote code execution vulnerability
Description
A remote code execution vulnerability in Watchguard XCS allows arbitrary shell commands execution via 'id' parameter of 'ADMIN/mailqueue.spl' page.
Default
configuration
Profiles
High
Medium
Low
Internet
Action
Block
Block
Block
Block
Alarm Level
Major
Minor
Minor
Major
References
URL:
http://www.security-assessment.com/files/documents/advisory/Watchguard-XCS-final.pdf
Available since
ASQ v5.0.0
Protects
Watchguard XCS Multiple Arbitrary Remote Commands Execution Vulnerabilities
100 last CVE
CVE-2015-5453
CVE-2015-5452
Risk level
High
