Lucene search
SymantecCVELIST:CVE-2014-7285HistoryDec 17, 2014 - 4:00 p.m.
CVE-2014-7285
2014-12-1716:00:00
symantec
www.cve.org
The management console on the Symantec Web Gateway (SWG) appliance before 5.2.2 allows remote authenticated users to execute arbitrary OS commands by injecting command strings into unspecified PHP scripts.
References
karmainsecurity.com/KIS-2014-19
osvdb.org/show/osvdb/116009
packetstormsecurity.com/files/130612/Symantec-Web-Gateway-5-restore.php-Command-Injection.html
www.exploit-db.com/exploits/36263
www.securityfocus.com/bid/71620
www.securitytracker.com/id/1031386
www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20141216_00
Related
packetstorm
packetstorm
Symantec Web Gateway 5.2.1 OS Command Injection
2014-12-31 00:00:00
Symantec Web Gateway 5 restore.php Command Injection
2015-03-03 00:00:00
zdt
zdt
Symantec Web Gateway 5.2.1 OS Command Injection Vilnerability
2015-01-01 00:00:00
Symantec Web Gateway 5 restore.php Command Injection Exploit
2015-03-03 00:00:00
securityvulns
securityvulns
cve
cve
CVE-2014-7285
2014-12-17 16:59:00
nessus
nessus
Symantec Web Gateway < 5.2.2 Authenticated OS Command Injection (SYM14-016)
2014-12-19 00:00:00
prion
prion
Design/Logic Flaw
2014-12-17 16:59:00
nvd
nvd
CVE-2014-7285
2014-12-17 16:59:00
symantec
symantec
Symantec Web Gateway OS Authenticated Command Injection
2014-12-16 08:00:00
openvas
openvas
Symantec Web Gateway Unspecified Remote Command Execution Vulnerability (Dec 2014)
2014-12-23 00:00:00
Symantec Web Gateway < 5.2.2 Command Injection Vulnerability
2014-12-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Symantec Web Gateway OS Command Injection (CVE-2014-7285; CVE-2016-5313)
2015-03-25 00:00:00