CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1519

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1610%
EPSS Percentile6.10th
Published2003年4月2日
Last Modified2026年4月16日

Vulnerability Description

Format string vulnerability in the CLI interface for WatchGuard Firebox Vclass 3.2 and earlier, and RSSA Appliance 3.0.2, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the password parameter.

Affected Platforms (CPE)

🔌
Rapidstream

Rapidstream

= 500
🔌
Rapidstream

Rapidstream

= 2000
🔌
Rapidstream

Rapidstream

= 4000
🔌
Rapidstream

Rapidstream

= 6000
🔌
Rapidstream

Rapidstream

= 8000
🔌
Watchguard

Firebox

= v10
🔌
Watchguard

Firebox

= v60
🔌
Watchguard

Firebox

= v80
🔌
Watchguard

Firebox

= v100

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0325.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0335.html
🔗 http://www.iss.net/security_center/static/10217.php
🔗 http://www.osvdb.org/4924
🔗 http://www.securityfocus.com/bid/5814
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0325.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-09/0335.html
🔗 http://www.iss.net/security_center/static/10217.php

関連する脆弱性情報

CVE-2000-078410.0

sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remot...

CVE-2016-70897.8

WatchGuard RapidStream appliances allow local users to gain privileges and execute arbitrary commands via a crafted ifconfig comma...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...