AI Score
Confidence
High
EPSS
Percentile
99.5%
Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiSwitch before 3.4.3 allows remote attackers to execute arbitrary code via a crafted HTTP request, aka EGREGIOUSBLUNDER.
fortiguard.com/advisory/FG-IR-16-023
packetstormsecurity.com/files/138387/EGREGIOUSBLUNDER-Fortigate-Remote-Code-Execution.html
www.securityfocus.com/bid/92523
www.securitytracker.com/id/1036643
musalbas.com/2016/08/16/equation-group-firewall-operations-catalogue.html
www.exploit-db.com/exploits/40276/