JSON View XML View

Key Value
MTID M114231
Title Fortinet FortiGate Firmware Cookie Parser Remote Code Execution
Description A vulnerability in some versions of Fortinet FortiGate Firmware could lead to remote code execution.
Observation A vulnerability in some versions of Fortinet FortiGate Firmware could lead to remote code execution.

The flaw lies in the handling of a crafted HTTP request. Successful exploitation by a remote attacker could result in the execution of arbitrary code.
Recommendation The vendor has released an update to address the issue:

http://fortiguard.com/advisory/FG-IR-16-023
Vendor Fortinet
Attack Vector Malicious remote network traffic
Importance 9
Impact 10.00084536000
Threat Score 10.0
Labels
References
CVECVE-2016-6909
DISA IAVA2016-A-0219
EDB-ID40276
MTIDM114231
CPEs
cpe:/o:fortinet:fortiswitch:3.4.2
cpe:/o:fortinet:fortios:4.3.8
Created At 2016-08-17 00:00:00 UTC
Updated At 2016-11-19 10:30:42 UTC

Back