Palo Alto Networks PanOS - appweb3 Stack Buffer Overflow

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=908 Palo Alto Networks have published a fix for this issue: http://securityadvisories.paloaltonetworks.com/Home/Detail/68 PanOS uses a modified version of the appweb3 embedded webserver, it's used for a variety of tasks and is...

Palo Alto Networks PanOS - 'root_trace' Local Privilege Escalation

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=912 The setuid root executable /usr/local/bin/roottrace essentially just does setuid0 then system"/usr/local/bin/masterd", which is a python script: $ ls -l /usr/local/bin/roottrace -rwsr-xr-x 1 root root 12376 Oct 17 2014...

Palo Alto Networks PanOS - 'root_reboot' Local Privilege Escalation

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=913 This was fixed by PAN: http://securityadvisories.paloaltonetworks.com/Home/Detail/67 The rootreboot utility is setuid root, but performs multiple calls to system with attacker controlled data, such as this one: .text:0804870F C...

CVE-2016-1712

Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x before 6.0.14, 6.1.x before 6.1.12, and 7.0.x before 7.0.8 might allow local users to gain privileges by leveraging improper sanitization of the rootreboot local invocation...

Palo Alto PAN-OS Cross-Site Scripting Vulnerability

Palo Alto PAN-OS is an operating system developed by Palo Alto Networks, Inc. for its firewall appliances. A cross-site scripting vulnerability exists in Palo Alto PAN-OS versions 7.0.1 through 7.0.7, which stems from the web interface failing to properly filter HTML code. A remote attacker could...

Palo Alto Networks Pan-OS 5.0.8 - Multiple Vulnerabilities

No description provided by source. from http://thomaspollet.blogspot.be/2013/11/Palo-Alto-XSS.html : A couple of bugs exist in Palo Alto Networks PANOS = 5.0.8 which can be exploited to conduct cross-site scripting attacks. - Certificate fields are displayed in the firewall web interface without...

Palo Alto Networks Pan-OS 5.0.8 - Multiple Vulnerabilities

Palo Alto Networks Pan-OS 5.0.8 - Multiple Vulnerabilities from http://thomaspollet.blogspot.be/2013/11/Palo-Alto-XSS.html : A couple of bugs exist in Palo Alto Networks PANOS These issues have been fixed in PANOS 5.0.9 . Example html source code to CSRF POST a rogue cert : 1. PA: 2. 3. 4. 5. 6...

Palo Alto Networks PanOS 5.0.8 XSS / CSRF

Palo Alto Networks PANOS , L=Default City, O=Default Company Ltd Validity Not Before: Oct 1 16:28:18 2013 GMT Not After : Oct 1 16:28:18 2014 GMT Subject: C=XX, ST=, L=Default City, O=Default Company Ltd Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: 1024 bit Modulus:...