CVE-2013-5701

WatchGuard Server Center <= 11.7.4 - Untrusted Search Path Privilege Escalation via wgpr.dll

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-5701. PoCs published by Julien Ahrens.

AI-analyzed exploit summary This exploit targets a local privilege escalation vulnerability in Watchguard Server Center by leveraging a DLL export function to execute arbitrary commands (e.g., 'calc') with SYSTEM privileges. The PoC demonstrates the vulnerability by launching a calculator via WinExec.

Description

Multiple untrusted search path vulnerabilities in (1) Watchguard Log Collector (wlcollector.exe) and (2) Watchguard WebBlocker Server (wbserver.exe) in WatchGuard Server Center 11.7.4, 11.7.3, and possibly earlier allow local users to gain privileges via a Trojan horse wgpr.dll file in the application's bin directory.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Julien Ahrens · clocalwindows
https://www.exploit-db.com/exploits/38752

This exploit targets a local privilege escalation vulnerability in Watchguard Server Center by leveraging a DLL export function to execute arbitrary commands (e.g., 'calc') with SYSTEM privileges. The PoC demonstrates the vulnerability by launching a calculator via WinExec.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Watchguard Server Center 11.7.4 and 11.7.3
Auth required
Prerequisites: Local access to the target system · Ability to place a malicious DLL in a location where it will be loaded by the vulnerable software
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

EPSS 0.0014
EPSS Percentile 34.4%

Details

CWE
CWE-264
Status published
Products (2)
watchguard/server_center 11.7.3
watchguard/server_center < 11.7.4
Published Oct 03, 2013
Tracked Since Feb 18, 2026