Dell SonicWALL Network Security Appliance NSA 6600 XSS Vulnerability

ID 1337DAY-ID-26600
Type zdt
Reporter LiquidWorm
Modified 2016-12-31T00:00:00


Dell SonicWALL Network Security Appliance NSA 6600 suffers from a reflective cross site scripting vulnerability. Versions affected include NSA 6600 running SonicOS Enhanced, WXA 4000 running, and SafeMode

Dell SonicWALL Network Security Appliance NSA 6600 Reflected XSS

Vendor: Dell Inc.
Product web page:
Affected version: NSA 6600 running SonicOS Enhanced
                  WXA 4000 running

Summary: Uncompromising security and performance for emerging large organizations.
The NSA 6600 network security appliance delivers best-in-class protection, speed
and scalability with 12 Gbps throughput and up to 6000 VPN clients.

Desc: SonicWALL NSA suffers from a XSS issue due to a failure to properly sanitize
user-supplied input to the 'curUserName' GET parameter in the 'appFirewallSummary.html'
script. Attackers can exploit this weakness to execute arbitrary HTML and script code
in a user's browser session.

Tested on: SonicWALL
           Apache Tomcat 6.0.41

Vulnerability discovered by Gjoko 'LiquidWorm' Krstic

Advisory ID: ZSL-2016-5391
Advisory URL:



# [2018-04-08]  #