发布时间 :2001-02-12 00:00:00
修订时间 :2008-09-05 16:22:08

[原文]Buffer overflow in HTTP server on the WatchGuard SOHO firewall allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long GET request.

[CNNVD]Watchguard SOHO防火墙超大GET请求DoS漏洞(CNNVD-200102-074)

        WatchGuard SOHO防火墙的HTTP服务器存在缓冲区溢出漏洞。远程攻击者借助超长GET请求导致服务拒绝和可能执行任意代码。

- CVSS (基础分值)

CVSS分值: 10 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)


- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源
(VENDOR_ADVISORY)  ISS  20001214 Multiple vulnerabilities in the WatchGuard SOHO Firewall
(VENDOR_ADVISORY)  XF  watchguard-soho-web-dos(5218)

- 漏洞信息

Watchguard SOHO防火墙超大GET请求DoS漏洞
危急 缓冲区溢出
2001-02-12 00:00:00 2006-01-18 00:00:00
        WatchGuard SOHO防火墙的HTTP服务器存在缓冲区溢出漏洞。远程攻击者借助超长GET请求导致服务拒绝和可能执行任意代码。

- 公告与补丁

        Watchguard has addressed this vulnerability with the latest release of SOHO Firewall. The latest version can be downloaded at the following location:

- 漏洞信息

WatchGuard Firebox SOHO GET Request Overflow DoS
Remote / Network Access Denial of Service, Input Manipulation
Loss of Integrity, Loss of Availability
Exploit Public

- 漏洞描述

WatchGuard Firebox SOHO contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends an overly long GET request to the Web administration interface, and will result in loss of availability for the firewall.

- 时间线

2000-12-14 Unknow
2000-12-14 Unknow

- 解决方案

Upgrade to version 2.2.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

- 漏洞信息

Watchguard SOHO Firewall Oversized GET Request DoS Vulnerability
Failure to Handle Exceptional Conditions 2114
Yes Yes
2000-12-14 12:00:00 2009-07-11 04:46:00
Discovered by Steven Maks and Keith Jarvis of Internet Security Systems <> and posted to Bugtraq on December 14, 2000.

- 受影响的程序版本

WatchGuard SOHO Firewall 2.1.3
WatchGuard SOHO Firewall 1.6
WatchGuard SOHO Firewall 2.2.1

- 不受影响的程序版本

WatchGuard SOHO Firewall 2.2.1

- 漏洞讨论

SOHO Firewall is an appliance firewall by Watchguard Technologies Inc. designed for Small Office/Home Office users.

SOHO Firewall is susceptible to a trivial denial of service attack. Performing an overly long GET request to the web server component will cause SOHO Firewall to crash. Restarting the service is required in order to regain normal functionality. Watchguard has confirmed that this vulnerability could not be implemented to launch arbitrary code.

Successful exploitation of this vulnerability could assist in the development of further attacks due to the elimination of a firewall defense.

- 漏洞利用

See discussion.

- 解决方案

Watchguard has addressed this vulnerability with the latest release of SOHO Firewall. The latest version can be downloaded at the following location:

- 相关参考