Vulnerability Description
WatchGuard Fireware allows user enumeration, e.g., in the Firebox XML-RPC login handler. A login request that contains a blank password sent to the XML-RPC agent in Fireware v11.12.1 and earlier returns different responses for valid and invalid usernames. An attacker could exploit this vulnerability to enumerate valid usernames on an affected Firebox.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Watchguard | Fireware | <= 11.2.1 |
Related Weaknesses (CWE)
References
- http://watchguardsupport.force.com/publicKB?type=KBSecurityIssues&SFDCID=kA62A00Vendor Advisory
- https://packetstormsecurity.com/files/142177/watchguardfbxtm-xxeinject.txtExploitThird Party AdvisoryVDB Entry
- https://www.sidertia.com/Home/Community/Blog/2017/04/17/Fixed-the-Fireware-VulneExploitThird Party Advisory
- https://www.watchguard.com/support/release-notes/fireware/11/en-US/EN_ReleaseNotRelease NotesVendor Advisory
- http://watchguardsupport.force.com/publicKB?type=KBSecurityIssues&SFDCID=kA62A00Vendor Advisory
- https://packetstormsecurity.com/files/142177/watchguardfbxtm-xxeinject.txtExploitThird Party AdvisoryVDB Entry
- https://www.sidertia.com/Home/Community/Blog/2017/04/17/Fixed-the-Fireware-VulneExploitThird Party Advisory
- https://www.watchguard.com/support/release-notes/fireware/11/en-US/EN_ReleaseNotRelease NotesVendor Advisory
FAQ
What is CVE-2017-8055?
CVE-2017-8055 is a vulnerability with a CVSS score of 5.3 (MEDIUM). WatchGuard Fireware allows user enumeration, e.g., in the Firebox XML-RPC login handler. A login request that contains a blank password sent to the XML-RPC agent in Fireware v11.12.1 and earlier retur...
How severe is CVE-2017-8055?
CVE-2017-8055 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-8055?
Check the references section above for vendor advisories and patch information. Affected products include: Watchguard Fireware.