Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:MISC:SYM-WEB-CMD-INJ
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Symantec Web Gateway OS Command Injection
Release Date	2016/11/10
Update Number	2803
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Symantec Web Gateway OS Command Injection

A command injection vulnerability exists in Symantec Web Gateway. A remote authenticated attacker can leverage this vulnerability to inject and execute commands with root privileges.

Extended Description

Symantec Web Gateway (SWG) before 5.2.5 allows remote authenticated users to execute arbitrary OS commands.

Affected Products

Symantec web_gateway 5.2.2

References

CVE: CVE-2016-5313

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Symantec Web Gateway OS Command Injection

Extended Description

Affected Products

References