IPsec/SSL VPN

 View Only

Exploit on sslvpn_websession file (CVE-2018-13379 - FortiOS system file leak through SSL VPN via specially crafted HTTP resource requests)

  • 1.  Exploit on sslvpn_websession file (CVE-2018-13379 - FortiOS system file leak through SSL VPN via specially crafted HTTP resource requests)

    Posted Sep 07, 2021 09:21 AM
    Dear all,

    With reference to the exploit below: Fortiguard
    FortiGuard remove preview
    Fortiguard
    FortiOS system file leak through SSL VPN via specially crafted HTTP resource requests A path traversal vulnerability in the FortiOS SSL VPN web portal may allow an unauthenticated attacker to download FortiOS system files through specially crafted HTTP resource requests.
    View this on FortiGuard >

    Does anyone know if the sslvpn_websession file that holds the credentials is being updated upon every user VPN login or does it get updated only on a periodic basis (e.g. every few days or months)? 

    Thank you.