Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2014/09/17 12:0 a.m.10 views

Symantec Web Gateway dbutils.php SQL Injection (CVE-2014-1651)

An SQL injection vulnerability exists in Symantec Web Gateway. The vulnerability is due to lack of proper sanitization of the "hostname" HTTP parameter passed to some PHP pages. A remote, authenticated attacker could exploit this vulnerability by sending a crafted HTTP request to the vulnerable...

5.8CVSS1.2AI score0.01976EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/19 12:0 a.m.24 views

Symantec Web Gateway < 5.2.1 Multiple Vulnerabilities (SYM14-010)

According to its self-reported version number, the remote web server is hosting a version of Symantec Web Gateway prior to version 5.2.1. It is, therefore, affected by the following vulnerabilities : - A remote command execution flaw exists with the 'SNMPConfig.php' where user input is not proper...

9.8CVSS8.7AI score0.06958EPSS
Exploits0References5
NVD
NVD
added 2014/06/18 7:55 p.m.20 views

CVE-2014-1651

SQL injection vulnerability in clientreport.php in the management console in Symantec Web Gateway SWG before 5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

5.8CVSS9.9AI score0.01976EPSS
Exploits0References5
Cvelist
Cvelist
added 2014/06/18 7:0 p.m.33 views

CVE-2014-1651

SQL injection vulnerability in clientreport.php in the management console in Symantec Web Gateway SWG before 5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

9.8AI score0.01976EPSS
Exploits0References5
CVE
CVE
added 2014/06/18 7:0 p.m.50 views

CVE-2014-1651

CVE-2014-1651 affects Symantec Web Gateway (SWG) management console: SQL injection in clientreport.php allows a remote attacker to execute arbitrary SQL commands before version 5.2. The issue is tied to improper input handling (hostname parameter). Remediation per SYM14-010 is to upgrade to SWG 5...

5.8CVSS9.7AI score0.01976EPSS
Exploits0References5Affected Software1
Symantec
Symantec
added 2014/06/16 8:0 a.m.27 views

Symantec Web Gateway Security Issues

SUMMARY Symantec Web Gateway SWG 5.2 Appliance management console is susceptible to security issues. Successful exploitation could result in unauthorized command execution on or access to the management console. There is also potential for unauthorized backend database manipulation. AFFECTED...

7.9CVSS0.06958EPSS
Exploits0Affected Software1
Rows per page
Query Builder