CVE-2016-6909
57Vexday Risk Score
Prioritize patching. It exploitation observed by VulnCheck and has a public proof of concept.
ssvc Actepss 50%
from disclosure to weapon0 days
Published on NVDAug 24
1st PoCAug 19
VulnCheck+35d
exploitation probability
50%top 1% of all CVEs
observed exploitation
yesVulnCheck
3 public exploit(s)
Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiSwitch before 3.4.3 allows remote attackers to execute arbitrary code via a crafted HTTP request, aka EGREGIOUSBLUNDER.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/138387/EGREGIOUSBLUNDER-Fortigate-Remote-Code-Execution.htmlunverifiedcve_referencewww.exploit-db.com/exploits/40276/unverifiedexploitdbwww.exploit-db.com/exploits/40276unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://fortiguard.com/advisory/FG-IR-16-023http://packetstormsecurity.com/files/138387/EGREGIOUSBLUNDER-Fortigate-Remote-Code-Execution.htmlhttps://musalbas.com/2016/08/16/equation-group-firewall-operations-catalogue.htmlhttps://www.exploit-db.com/exploits/40276/http://www.securityfocus.com/bid/92523http://www.securitytracker.com/id/1036643