Vulnerability Details CVE-2013-5701
Multiple untrusted search path vulnerabilities in (1) Watchguard Log Collector (wlcollector.exe) and (2) Watchguard WebBlocker Server (wbserver.exe) in WatchGuard Server Center 11.7.4, 11.7.3, and possibly earlier allow local users to gain privileges via a Trojan horse wgpr.dll file in the application's bin directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.2%
CVSS Severity
CVSS v2 Score 7.2
References
- http://seclists.org/fulldisclosure/2013/Sep/43
- http://www.securitytracker.com/id/1028992
- https://www.rcesecurity.com/2013/09/cve-2013-5701-watchguard-server-center-v11-7-4-wgpr-dll-local-privileges-escalation-vulnerability
- http://seclists.org/fulldisclosure/2013/Sep/43
- http://www.securitytracker.com/id/1028992
- https://www.rcesecurity.com/2013/09/cve-2013-5701-watchguard-server-center-v11-7-4-wgpr-dll-local-privileges-escalation-vulnerability
Products affected by CVE-2013-5701
-
cpe:2.3:a:watchguard:server_center:11.7.3
-
cpe:2.3:a:watchguard:server_center:11.7.4