Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dell SonicWall NetExtender 非引用Windows搜索路径漏洞
Vulnerability Description
Dell SonicWall NetExtender是美国戴尔(Dell)公司的一款SonicWALL网络安全设备(NSA)瘦客户端,它支持安全连接到远程网络,并能够在远程网络上运行任何应用程序、上传和下载文件等。 使用7.5.1.2之前版本和8.0.0.3之前8.x版本固件的Dell SonicWall NetExtender中的自动运行的值中存在非引用Windows搜索路径漏洞。本地攻击者可借助%SYSTEMDRIVE%文件夹中的Trojan horse程序利用该漏洞获取权限。
CVSS Information
N/A
Vulnerability Type
N/A