Sophos Astaro Security Gateway Remote Code Execution Vulnerability

The Sophos Astaro Security Gateway aka ASG is a gateway device from Sophos UK. A security vulnerability exists in Sophos ASG version 7. A remote attacker can exploit the vulnerability by sending a specially crafted request to the index.plx file to execute arbitrary code...

CVE-2017-6315

Astaro Security Gateway aka ASG 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx...

Design/Logic Flaw

Astaro Security Gateway aka ASG 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx...

CVE-2017-6315

Astaro Security Gateway aka ASG 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx...

CVE-2017-6315

Astaro Security Gateway aka ASG 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx...

CVE-2017-6315

CVE-2017-6315 affects Sophos Astaro Security Gateway (ASG) v7. It permits unauthenticated remote code execution by sending a crafted request to the index.plx file. Several connected sources (NVD/CVELIST entries and exploit/public details) corroborate unauthenticated RCE via index.plx, highlightin...