2 matches found
CVE-2015-5690
The management console on Symantec Web Gateway SWG appliances with software before 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging a "redirect."...
CVE-2015-5690
Symantec Web Gateway (SWG) management console prior to SWG 5.2.2 / DB 5.0.0.1277 is affected by CVE-2015-5690: a redirect bypass allows an authenticated remote user to bypass access controls and execute arbitrary commands. ZDI confirms a path-processing flaw enabling potential root-level command ...