CVE-2013-5701
First published: Thu Oct 03 2013(Updated: )
Multiple untrusted search path vulnerabilities in (1) Watchguard Log Collector (wlcollector.exe) and (2) Watchguard WebBlocker Server (wbserver.exe) in WatchGuard Server Center 11.7.4, 11.7.3, and possibly earlier allow local users to gain privileges via a Trojan horse wgpr.dll file in the application's bin directory.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| WatchGuard Server Center | <=11.7.4 | |
| WatchGuard Server Center | =11.7.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-5701?
CVE-2013-5701 is classified as a medium severity vulnerability due to its potential for local privilege escalation.
How do I fix CVE-2013-5701?
To remediate CVE-2013-5701, it is essential to update WatchGuard Server Center to version 11.7.5 or later.
Which versions of WatchGuard Server Center are affected by CVE-2013-5701?
CVE-2013-5701 affects WatchGuard Server Center versions 11.7.4, 11.7.3, and potentially earlier versions.
What type of attack vector does CVE-2013-5701 utilize?
CVE-2013-5701 utilizes a local attack vector through untrusted search path vulnerabilities.
Can CVE-2013-5701 allow remote exploitation?
No, CVE-2013-5701 is limited to local users gaining privileges and does not allow for remote exploitation.
- collector/nvd-index
- agent/softwarecombine
- agent/type
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- vendor/watchguard
- canonical/watchguard server center
- version/watchguard server center/11.7.4
- version/watchguard server center/11.7.3