CVE-2013-5701

Watchguard Server Center < 11.7.4 - Access Control

Title source: rule

Description

Multiple untrusted search path vulnerabilities in (1) Watchguard Log Collector (wlcollector.exe) and (2) Watchguard WebBlocker Server (wbserver.exe) in WatchGuard Server Center 11.7.4, 11.7.3, and possibly earlier allow local users to gain privileges via a Trojan horse wgpr.dll file in the application's bin directory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Julien Ahrens · clocalwindows

https://www.exploit-db.com/exploits/38752

View Code ZIP pw:eip

References (3)

[Exploit] http://seclists.org/fulldisclosure/2013/Sep/43

[Exploit] http://www.securitytracker.com/id/1028992

[Exploit] https://www.rcesecurity.com/2013/09/cve-2013-5701-watchguard-server-center-v11-7-4-wgpr-dll-local-privileges-escalation-vulnerability

Scores

EPSS 0.0014

EPSS Percentile 34.1%

Details

CWE

CWE-264

Status published

Products (2)

watchguard/server_center 11.7.3

watchguard/server_center < 11.7.4

Published Oct 03, 2013

Tracked Since Feb 18, 2026