Summary
This host is running Symantec Web Gateway and is prone to command execution vulnerability.
Impact
Successful exploits will result in the execution of arbitrary attack supplied commands in the context of the affected application.
Impact Level: System/Application
Solution
Upgrade to Symantec Web Gateway version 5.0.3 or later, For updates refer to http://www.symantec.com/business/web-gateway
Insight
The flaw is due to an improper validation of certain unspecified input. This can be exploited to execute arbitrary code by injecting crafted data or including crafted data.
Affected
Symantec Web Gateway versions 5.0.x before 5.0.3
References
Severity
Classification
-
CVE CVE-2012-0297, CVE-2012-0299 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities