Advisory Details

May 15th, 2015

Dell Sonicwall GMS Virtual Appliance Multiple Remote Code Execution Vulnerabilities

ZDI-15-231
ZDI-CAN-2659

CVE ID CVE-2015-3990
CVSS SCORE 9, (AV:N/AC:L/Au:S/C:C/I:C/A:C)
AFFECTED VENDORS SonicWALL
AFFECTED PRODUCTS GMS Virtual Appliance
VULNERABILITY DETAILS


This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Dell SonicWALL Global Management System (GMS) virtual appliance. Authentication is required to exploit this vulnerability.

The specific flaw exists within the GMS ViewPoint (GMSVP) web application. The issue lies in the handling of configuration input due to a failure to safely sanitize user data before executing a command. An attacker could leverage this vulnerability to execute code with root privileges on the underlying operating system.

ADDITIONAL DETAILS SonicWALL has issued an update to correct this vulnerability. More details can be found at:
https://support.software.dell.com/product-notification/152178?productName=SonicWALL%20GMS
DISCLOSURE TIMELINE
  • 2015-01-13 - Vulnerability reported to vendor
  • 2015-05-15 - Coordinated public release of advisory
CREDIT kernelsmith - HP Zero Day Initiative
BACK TO ADVISORIES