| VID |
29108 |
| Severity |
40 |
| Port |
80 |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Web interface of the SonicWALL SOHO/10 is vulnerable to multiple vulnerabilities. SonicWALL SOHO/10 is an Internet Security Appliance with firewall, VPN, content filtering and other capabilities. SonicWALL SOHO/10 firmware version 5.1.7.0 is vulnerable to two vulnerabilities, which can be exploited by a remote attacker to conduct cross-site scripting and script insertion attacks.
1) A cross-site scripting vulnerability in the SonicWALL SOHO/10 can be exploited to execute arbitrary HTML and script code in a user's browser session in context of a vulnerable site.
2) An arbitrary code injection vulnerability in the SonicWALL SOHO/10 can a remote attacker to supply a username containing malicious code to the login page of the device, causing the device to store the name in the log file. Then, when an administrator attempts to view the log file, the malicious code will be executed by the administrator's browser.
* References:
http://www.securitytracker.com/alerts/2005/Apr/1013638.html
http://secunia.com/advisories/14823/
http://archives.neohapsis.com/archives/bugtraq/2005-04/0041.html
http://www.oliverkarow.de/research/sonicwall.txt
* Platforms Affected:
SonicWALL SOHO/10 firmware version 5.1.7.0
Microsoft Windows Any version |
| Recommendation |
No upgrade or patch available as of June 2014. |
| Related URL |
CVE-2005-1006 (CVE) |
| Related URL |
12984 (SecurityFocus) |
| Related URL |
19958,19960 (ISS) |
|
