logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2012-0297

Description

The management GUI in Symantec Web Gateway 5.0.x before 5.0.3 does not properly restrict access to application scripts, which allows remote attackers to execute arbitrary code by (1) injecting crafted data or (2) including crafted data.


Affected Software


CPE Name Name Version
symantec:web_gateway symantec web gateway 5.0.1
symantec:web_gateway symantec web gateway 5.0
symantec:web_gateway symantec web gateway 5.0.2

Related