cpe:/o:dell:sonicwall_secure_remote_access_server:8.1.0.2-14sv CVE-2016-9682 2017-02-22T00:59:00.167-05:00 2018-10-17T06:29:07.963-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2017-02-23T09:45:18.467-05:00 EXPLOIT-DB 42342 BID 96375 CONFIRM http://documents.software.dell.com/sonicwall-sma-100-series/8.1.0.7/release-notes/resolved-issues?ParentProduct=868 CONFIRM https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2016-0003 The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to two Remote Command Injection vulnerabilities in its web administrative interface. These vulnerabilities occur in the diagnostics CGI (/cgi-bin/diagnostics) component responsible for emailing out information about the state of the system. The application doesn't properly escape the information passed in the 'tsrDeleteRestartedFile' or 'currentTSREmailTo' variables before making a call to system(), allowing for remote command injection. Exploitation of this vulnerability yields shell access to the remote machine under the nobody user account.