Dell SonicWALL Email Security Platform Flaws Could Cause Sensitive Information Disclosure

Four previously unknown vulnerabilities were found in the Dell SonicWALL Email Security virtual appliance app by researchers at Digital Defense Inc. The researchers detected the flaws while developing new audit modules for its patented vulnerability scanning technology. The flaws should be addressed immediately because of the easily accessible web interface on internet or intranet-connected application for the app. Furthermore, there’s a potential for unauthorized individuals to access sensitive information.

The Dell SonicWALL Email Security platform can be configured as a Mail Transfer Agent (MTA) or SMTP proxy and with spam protection, compliance scanning, anti-malware and anti-virus capabilities.

What’s the Impact of the Flaws in Dell SonicWALL Email Security platform?

If these vulnerabilities end up being exploited in the wild, worst case scenario is sensitive data disclosure of admin account password hash, arbitrary OS command execution and file deletion as ROOT. Eventually, the scenario would end with complete compromise of the appliance.

Fortunately, Dell has already addressed the vulnerabilities in a rollup patch 8.3.2 for the SonicWALL Email Security platform. The patch has been available to customers since October 3, 2016.

Here is a short resume of all four vulnerabilities:

• Authentication Bypass in DLoadReportsServlet

Impact: Sensitive information disclosure including config files and the SHA1 password hash for the admin account.

• Authenticated XML External Entity Injection in known_network_data_import.html

Impact: Information disclosure.

• Authenticated Remote Command Execution in manage_ftpprofile.html

Impact: Arbitrary OS command execution as root, full compromise of the virtual appliance.

• Authenticated Arbitrary File Deletion in policy_dictionary.html

Impact: Deletion of arbitrary files with root privileges, denial of service.



Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:


Related posts:
1. Pre-Installed Dell Software Flaws Could Disable Security Mechanisms Are you a Dell customer? Be alert as Talos researchers...
2. Dell BIOS Vulnerabilities Could Cause Remote Code Execution (CVE-2022-24415) Security researchers reported several new vulnerabilities in Dell BIOS that...
3. Dell BIOSConnect Feature Vulnerable to RCE Attacks (CVE-2021-21573) Dell devices contain four high-severity security flaws that could allow...
4. CVE-2022-22274 SonicWall Vulnerability Could Cause RCE, DoS Attacks There’s a new SonicWall vulnerability, identified as CVE-2022-22274. The vulnerability...
5. CVE-2020-29491: Critical Flaws in Dell ThinOS Powering Devices in the Healthcare Sector Two critical vulnerabilities (CVE-2020-29491 and CVE-2020-29492) with CVSS score of...
6. Dell Tech Support Scams Point at a Major Customer Data Breach Tech support scams may not be as malicious as other...
7. SonicWall Zero-Day Vulnerability Puts Remote Employees at Risk Security researchers just released an alert about a new SonicWall...
8. Which are The Most Secure Laptops (Notebooks) in 2017 1 2 3 4 5 6 7 8 9 10...
Leave a Comment Cancel reply

Your email address will not be published. Required fields are marked *