Symantec Web Gateway < 5.2.1 Multiple Vulnerabilities (SYM14-010)

According to its self-reported version number, the remote web server is hosting a version of Symantec Web Gateway prior to version 5.2.1. It is, therefore, affected by the following vulnerabilities : - A remote command execution flaw exists with the 'SNMPConfig.php' where user input is not proper...

CVE-2013-5017

SNMPConfig.php in the management console in Symantec Web Gateway SWG before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors...

Command injection

SNMPConfig.php in the management console in Symantec Web Gateway SWG before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors...

CVE-2013-5017

SNMPConfig.php in the management console in Symantec Web Gateway SWG before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors...

CVE-2013-5017

Symantec Web Gateway (SWG) prior to 5.2.1 is affected by CVE-2013-5017 due to a command injection vulnerability in SNMPConfig.php that can lead to remote code execution. The issue is described across multiple sources as affecting the management console and enabling arbitrary command execution, po...

Symantec Web Gateway user.php SQL Injection and snmpConfig.php Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Web Gateway. Authentication is required to exploit this vulnerability. The specific flaws exist within the user.php and snmpConfig.php files. SQL injection and command injection is possibl...