• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

WatchGuard Firebox VClass CLI Interface Improperly Terminated Connection Vulnerability

A vulnerability has been reported that affects Firebox Vclass security appliances as well as legacy RSSA (RapidStream Security Appliances) devices. The vulnerability is due to the CLI binary failing to properly terminate a failed login connection. This results in an attacker having access to the CLI with administrative privileges.