Security News > 2020 > October > If you want to practice writing exploits and worms, there's a big hijacking hole in SonicWall firewall VPNs
A critical vulnerability in a SonicWall enterprise VPN firewall can be exploited to crash the device or remotely execute code on it, reverse engineers said this week.
In a statement SonicWall said it "Was contacted by a third-party research team regarding issues related to SonicWall next-generation virtual firewall models." The spokesman went on to say that SonicWall's own engineers discovered even more vulns while reproducing Tripwire's findings, going on to develop patches for the whole lot.
"Immediately upon discovery, SonicWall researchers conducted extensive testing and code review to confirm the third-party research. This analysis lead to the discovery of additional unique vulnerabilities to virtual and hardware appliances requiring Common Vulnerabilities and Exposures listings... The PSIRT team worked to duplicate the issues and develop, test and release patches for the affected products," said the spokesman.
He concluded: "At this time, SonicWall is not aware of a vulnerability that has been exploited or that any customer has been impacted." SonicWall credited Craig Young at Tripwire and Nikita Abramov at Positive Technologies for reporting the stack-overflow bug.
A batch of 11 patches have been released by SonicWall.
News URL
https://go.theregister.com/feed/www.theregister.com/2020/10/16/sonicwall_firewall_vuln/
Related news
- SonicWall firewall exploit lets hackers hijack VPN sessions, patch now (source)
- SonicWall firewall bug leveraged in attacks after PoC exploit release (source)
- SonicWall firewalls now under attack: Patch ASAP or risk intrusion via your SSL VPN (source)
- Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens (source)
- Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits (source)
- 5,000+ SonicWall firewalls still open to attack (CVE-2024-53704) (source)